A phishing campaign is actively running with the name of Chase Business and dropping malicious files to different users. Threat indicators are provided.
The email looks like this :
We have temporarily suspended your Chase, N.A. account for the funds transfer service.
Here are your account details:
Please contact Member Services to re-activate your suspended account.
Sincerely, Member Services
Indicators of Compromise
IP(s) / Hostname(s)
Malware Hash (MD5/SHA1/SH256)