2018-12-17 - QUICK POST: HANCITOR MALSPAM LINKS TO XLS FILES INSTEAD OF WORD DOCS

NOTICE:

ASSOCIATED FILES:

  • 2018-12-17-Hancitor-malspam-10-email-examples.txt   (57,766 bytes)
  • 2018-12-17-Hancitor-infection-with-Urnsif.pcap   (1,516,687 bytes)
  • 2018-12-17-downloaded-Excel-sheet-with-macro-for-Hancitor.xls   (428,032 bytes)
  • 2018-12-17-Hancitor-malware-binary-dropped-by-Excel-macro.exe   (69,632 bytes)
  • 2018-12-17-Ursnif-retrieved-by-Hancitor-infected-host.exe   (123,392 bytes)
  • 2018-12-17-registry-updated-caused-by-Urnsif.txt   (13,835,644 bytes)

 

NOTES:

 


Shown above:  Hancitor malspam today used Excel spreadsheets instead of Word docs.

 

Click here to return to the main page.