Entries filed under 'Spear Phishing. Targeted Attacks'

Threat Research Blog

The FireEye Labs team posts blog entries under threat research to present and discuss cyber attacks and threat intelligence from a technical perspective. They cover the full spectrum of exploits and vulnerabilities, including advanced malware and targeted threats.


    More Phish

    By J. Gomez
    In my last post, we saw attackers carry out a targeted campaign, sending phishing emails with malicious attachments. This article picks up where we left off, briefly looking at the malware attachment, then examining its interesting CnC communication techniques.   Let's start with a quick and dirty analysis of the phishing email attachment, "AutoCleanTool.Rar." A VirusTotal report can be seen here: https://www.virustotal.com/file/90e9c3a3a8c2675a1714e132cd3365cfecefbd68ee2022b6f27c4ffe5bb1e97e/analysis/ When the attached file is executed, the "AutoCleanTool" pops up on the Read more...