|2018-01-11 ⋅ MalwareBreakdown ⋅ |
Malspam Entitled “Invoice attched for your reference” Delivers Agent Tesla Keylogger
|2017-11-12 ⋅ |
Seamless Campaign Delivers Ramnit via RIG EK at 126.96.36.199. Follow-up Malware is AZORult Stealer.
|2017-10-10 ⋅ MalwareBreakdown ⋅ |
Malvertising Campaign Uses RIG EK to Drop Quant Loader which Downloads FormBook.
|2017-04-03 ⋅ Malware Breakdown ⋅ |
Shadow Server Domains Leading to RIG Exploit Kit Dropping Smoke Loader. Downloaded Neutrino Bot (AKA Kasidet).