DBatLoader Distributed via CMD Files
AhnLab SEcurity intelligence Center (ASEC) has recently discovered malware being distributed through CMD files and identified it as a downloader called DBatLoader (ModiLoader) that had been distributed before via phishing emails in RAR file format containing an EXE file. The file contained “FF, FE” which means “UTF-16LE”, so when the
New InnoSetup Malware Created Upon Each Download Attempt
AhnLab SEcurity intelligence Center (ASEC) has discovered the distribution of a new type of malware that is disguised as cracks and commercial tools. Unlike past malware which performed malicious behaviors immediately upon being executed, this malware displays an installer UI and malicious behaviors are executed upon clicking buttons during the
Analysis Report on Singapore Credit Card Data Traded on the Dark Web
Note “Analysis Report on Singapore Credit Card Data Traded on the Dark Web” consists of an introduction, an overview of the Singapore credit card data traded on the dark web, an analysis of Singapore credit card BIN, along with suggestions and a conclusion. We would like to state beforehand that
Phishing Emails Distributed to Singaporean Companies
Recent phishing email cases targeting Singaporean companies over the past month are as follows. The targeted companies include those in the manufacturing and media sectors. These phishing emails typically encourage recipients to execute attached malware files or click on URLs. This process can lead to the theft of user information,
Siemens Product Security Update Advisory
Overview An update has been released to address vulnerabilities in Siemens products. Users of...
Security update advisories for IBM products (IBM Cloud Pak for Security, IBM i, etc.)
Overview IBM has announced an update to address vulnerabilities in their products. Users of...
SAP Prodjct Suite May 2024 Security Patch Advisory
Overview SAP has announced an update to address vulnerabilities. Users of the affected versions...
Weekly Phishing Email Distribution Cases (June 9th, 2024 – June 15th, 2024)
This post will cover the distribution cases of phishing emails during the week from June 9th, 2024 to June 15th, 2024, and provide the associated information (email subject, attachments, URLs). The cases will be classified into Fake login page (i.e. FakePage) and malware types (i.e. Infostealer, Downloader, Exploit, Backdoor, etc.).
