Safety And Security

AutoIT-compiled Negasteal/Agent Tesla, Ave Maria Delivered via Malspam

Posted on Author Comments Off on AutoIT-compiled Negasteal/Agent Tesla, Ave Maria Delivered via Malspam
Trend Micro

By Miguel Carlo Ang and Earle Maui Earnshaw  We recently saw a malicious spam campaign that has AutoIT-compiled payloads – the trojan spy Negasteal or Agent Tesla (detected by Trend Micro as TrojanSpy.Win32.NEGASTEAL.DOCGC), and remote access trojan (RAT) Ave Maria or Warzone (TrojanSpy.Win32.AVEMARIA.T) – in our honeypots.  The upgrading of payloads from a typical trojan…

The post AutoIT-compiled Negasteal/Agent Tesla, Ave Maria Delivered via Malspam appeared first on .

Multimedia
All Other Multimedia:
image/jpeg iconMalware-200x125_18.jpg (4.01 KB)

Related Materials
Language:
English

read more

Post Views: 46

Related Articles
Safety And Security

Short October Patch Tuesday Includes Remote Desktop Client, Browser, and Authentication Patches

Posted on Author

Trend Micro October’s Patch Tuesday is relatively modest, with Microsoft releasing a total of 59 patches. However, this shorter list still warrants attention. Nine of the 59 were still identified as Critical, while the remaining 50 were labeled Important. Most of the critical bulletins were for various Internet Explorer and Microsoft Edge vulnerabilities, with one More Info »
Safety And Security

New Exploit Kit Capesand Reuses Old and New Public Exploits and Tools, Blockchain Ruse

Posted on Author

Trend Micro We discovered a new exploit kit named Capesand in October 2019. Capesand attempts to exploit recent vulnerabilities in Adobe Flash and Microsoft Internet Explorer (IE). Based on our investigation, it also exploits a 2015 vulnerability for IE. It seems the cybercriminals behind the exploit kit are continuously developing it and are reusing source More Info »
Safety And Security

New Exploit Kit Capesand Reuses Old and New Public Exploits and Tools, Blockchain Ruse

Posted on Author

Trend Micro We discovered a new exploit kit named Capesand in October 2019. Capesand attempts to exploit recent vulnerabilities in Adobe Flash and Microsoft Internet Explorer (IE). Based on our investigation, it also exploits a 2015 vulnerability for IE. It seems the cybercriminals behind the exploit kit are continuously developing it and are reusing source More Info »