Safety And Security

AutoIT-compiled Negasteal/Agent Tesla, Ave Maria Delivered via Malspam

Trend Micro

By Miguel Carlo Ang and Earle Maui Earnshaw  We recently saw a malicious spam campaign that has AutoIT-compiled payloads – the trojan spy Negasteal or Agent Tesla (detected by Trend Micro as TrojanSpy.Win32.NEGASTEAL.DOCGC), and remote access trojan (RAT) Ave Maria or Warzone (TrojanSpy.Win32.AVEMARIA.T) – in our honeypots.  The upgrading of payloads from a typical trojan…

The post AutoIT-compiled Negasteal/Agent Tesla, Ave Maria Delivered via Malspam appeared first on .

Multimedia
All Other Multimedia:
image/jpeg iconMalware-200x125_18.jpg (4.01 KB)

Related Materials
Language:
English

read more