2020-06-25 - TRICKBOT (GTAG GI6) FROM "BLACK LIVES MATTER" (BLM) MALSPAM

NOTICE:

• The zip archives on this page have been updated, and they now use the new password scheme.  For the new password, see the "about" page of this website.

ASSOCIATED FILES:

• 2020-06-25-BLM-malspam-2-email-examples.zip   471 kB (470,950 bytes)
• 2020-06-25-Trickbot-gtag-gi6-infection-traffic.pcap.zip   2.1 MB (2,121,516 bytes)
• 2020-06-25-malware-and-artifacts-from-Trickbot-gtag-gi6-activity.zip   639 kB (639,443 bytes)
• 2020-06-25-Trickbot-gtag-gi6-email-and-malware-info.txt.zip   1.0 kB (974 bytes)

SOME REFERENCES:

• https://twitter.com/abuse_ch/status/1275526243404972034
• https://news.sophos.com/en-us/2020/06/11/crooks-hijack-black-lives-matter-to-spread-zombie-malware/
• https://twitter.com/abuse_ch/status/1270739166716989443

 

Click here to return to the main page.