all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Phishing Kit Collecting Victim's IP Address, (Sat, May 20th)

Add to bookmarks
May 20, 2023, 10:35 a.m. | MalBot

Malware Analysis, News and Indicators - Latest topics malware.news

While reviewing my last findings today, I found a phishing email that delivered a classic .shtml file called “PROFORMA INVOICE.shtml”. Right now, nothing special, emails like this one are widespread. When you open the file in a sandbox, it reveals a classic form:


Article Link: https://isc.sans.edu/diary/rss/29866


1 post - 1 participant


Read full topic

address called collecting email emails file findings ip address kit may phishing phishing kit sandbox sat special victim

Visit resource

More from malware.news / Malware Analysis, News and Indicators - Latest topics

ISC Stormcast For Tuesday, May 30th, 2023 https://isc.sans.edu/podcastdetail/8516, (Tue, May 30th) an hour ago | malware.news
Malspam pushes ModiLoader (DBatLoader) infection for Remcos RAT, (Tue, May 30th) 2 hours ago | malware.news
dbatloader infection introduction malspam +4
A week in security (May 22-28) 4 hours ago | malware.news
apple a week in security back brand +34
2023-05-29 - Pcap and malware for ISC Diary (ModiLoader/Remcos RAT) 5 hours ago | malware.news
analysis article isc link +8
IBM security advisory (AV23-296) 9 hours ago | malware.news
advisory article canadian cyber +6
Dell security advisory (AV23-295) 9 hours ago | malware.news
advisory article canadian cyber +6
Zyxel addresses critical firewall, VPN flaws 12 hours ago | malware.news
addresses article communications critical +14
29th May – Threat Intelligence Report 14 hours ago | malware.news
attacks breaches cuba cuba ransomware +16
Pentagon updates cyber strategy, incorporating lessons learned in Ukraine 14 hours ago | malware.news
article campaigns cyber cyber strategy +15

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Toronto Transit Commission (TTC) - Chief Information Security Officer (CISO)

@ BIPOC Executive Search Inc. | Toronto, Ontario, Canada
View on infosec-jobs.com

Unit Manager for Cyber Security Culture & Competence

@ H&M Group | Stockholm, Sweden
View on infosec-jobs.com

Junior Security Engineer

@ Pipedrive | Tallinn, Estonia
View on infosec-jobs.com

Splunk Engineer (TS/SCI)

@ GuidePoint Security LLC | Huntsville, AL
View on infosec-jobs.com

DevSecOps Engineer, SRE (Top Secret) - 1537

@ Reinventing Geospatial (RGi) | Herndon, VA
View on infosec-jobs.com

Governance, Risk and Compliance (GRC) Lead

@ Leidos | Brisbane, Australia
View on infosec-jobs.com
View more jobs