9621 Agnes Crossing, Lake Suzanneview, New Mexico Island 84604-9295.
Malware operation Emotet is once again distributing malicious emails after nearly five months of “holiday” when the notorious cybercriminal operation was inactive. Emotet is malware that spreads through
Malware operation Emotet is once again distributing malicious emails after nearly five months of “holiday” when the notorious cybercriminal operation was inactive.
Emotet is malware that spreads through phishing campaigns containing malicious Excel or Word documents. When users open these documents and enable macros, the Emotet DLL will be downloaded and loaded into memory.
Once downloaded, the malware searches and intercepts emails for use in future spam campaigns and removes additional payloads such as Cobalt Strike or other malware that often leads to ransomware attacks. Although Emotet was considered the most common malware in the past, it suddenly stopped sending spam on June 13, 2022.
🚨Emotet is back in Distribution Mode🚨 – Started spamming as of 0800 UTC E4 and started spamming again as of 0930 UTC E5. Looks like Ivan needs some money again, so he’s back at work. Beware of directly attached XLS files and compressed and password protected XLS. 1/x
— Cryptolaemus (@Kriptolaemus1) November 2, 2022
Proofpoint threat researcher and Cryptolaemus member Tommy Majar told BleepingComputer that modern Emotet email campaigns use compromised email chains to distribute malicious Excel attachments. Of the samples uploaded to VirusTotal, BleepingComputer has seen attachments targeting users around the world under various languages ​​and filenames, appearing as invoices, scans, electronic forms, and other traps. Source
Source: Port Altele
John Wilkes is a seasoned journalist and author at Div Bracket. He specializes in covering trending news across a wide range of topics, from politics to entertainment and everything in between.
