Lucene search
K

9 matches found

Malwarebytes
Malwarebytes
added 2022/06/08 9:33 p.m.51 views

MakeMoney malvertising campaign adds fake update template

Malware authors and distributors are following the ebbs and flow of the threat landscape. One campaign we have tracked for a numbers of years recently introduced a new scheme to possibly completely move away from drive-by downloads via exploit kit. In this quick blog post, we will look at this ne...

0.2AI score
Exploits0
Malwarebytes
Malwarebytes
added 2020/09/24 9:45 p.m.31 views

Taurus Project stealer now spreading via malvertising campaign

For the past several months, Taurus Project—a relatively new stealer that appeared in the spring of 2020—has been distributed via malspam campaigns targeting users in the United States. The macro-laced documents spawn a PowerShell script that invokes certutil to run an autoit script ultimately...

0.3AI score
Exploits0
ThreatPost
ThreatPost
added 2019/12/04 6:32 p.m.55 views

‘Highly Competitive' Buer Loader Emerges in Underground Markets

A previously undocumented modular loader has emerged as a lucrative tool for cybercriminals in a variety of campaigns. Researchers say the “highly competitive” loader, dubbed Buer, is intended for use by actors seeking a turn-key, off-the-shelf solution. Researchers say they have spotted the load...

7.3AI score
Exploits0References16
ThreatPost
ThreatPost
added 2019/11/22 1:32 p.m.316 views

Raccoon Stealer Malware Scurries Past Microsoft Messaging Gateways

Criminals behind malware dubbed Raccoon Stealer have adopted a simple and effective technique to circumvent Microsoft and Symantec anti-spam messaging gateways. The technique has been used in a recent campaign targeting financial institutions via business email compromise BEC attacks. According t...

9.3CVSS0.1AI score0.89889EPSS
Exploits14References6
Carbon Black Blog
Carbon Black Blog
added 2019/07/08 4:3 p.m.158 views

CB TAU Threat Intelligence Notification: Maze Ransomware

Maze Ransomware, also known as ChaCha Ransomware, has been discovered being distributed by the Fallout exploit kit. After the encryption, it will create a ransom note named ‘DECRYPT-FILES.html’ in each of the encrypted file’s folders. The bottom of the ransom note is a base64 string which contain...

6.6AI score
Exploits0
Malwarebytes
Malwarebytes
added 2019/01/04 6:15 p.m.254 views

Vidar and GandCrab: stealer and ransomware combo observed in the wild

We have been tracking a prolific malvertising campaign for several weeks and captured a variety of payloads, including several stealers. One that we initially identified as Arkei turned out to be Vidar, a new piece of malware recently analyzed in detail by Fumik0 in his post: Let’s dig into Vidar...

7AI score
Exploits0
Trellix
Trellix
added 2018/10/30 12:0 a.m.11 views

Fallout Exploit Kit Releases the Kraken Ransomware on Its Victims

ARCHIVED STORY Fallout Exploit Kit Releases the Kraken Ransomware on Its Victims By John Fokker · October 30, 2018 Alexandr Solad and Daniel Hatheway of Recorded Future are coauthors of this post. Read Recorded Future’s version of this analysis. Rising from the deep, Kraken Cryptor ransomware has...

0.3AI score
Exploits0
Trellix
Trellix
added 2018/10/30 12:0 a.m.101 views

Fallout Exploit Kit Releases the Kraken Ransomware on Its Victims

ARCHIVED STORY Fallout Exploit Kit Releases the Kraken Ransomware on Its Victims By John Fokker · October 30, 2018 Alexandr Solad and Daniel Hatheway ofRecorded Future are coauthors of this post. Read Recorded Future’s version of this analysis. Rising from the deep, Kraken Cryptor ransomware has...

7AI score
Exploits0
Check Point Advisories
Check Point Advisories
added 2018/09/04 12:0 a.m.1 views

Fallout Exploit Kit Landing Page

Fallout exploit kit is a web exploit kit that operates by delivering malicious payload to the victim's computer. Successful infection will allow the attacker to download additional malware to the target...

2.8AI score
Exploits0
Rows per page
Query Builder