COVID-19 Phishing Sample #4: Coronavirus disease (COVID-19) outbreak prevention and cure update

This email below has been confirmed as malicious or fraudulent by the Information Security department. If you have received this phishing email, do not open any attachments or follow the link(s) in the message; simply delete the email.

This email instructs recipients to open an attachment for the purpose of receiving updated instructions on how to fight the coronavirus. This attachment was an archive that, when opened, revealed “Coronavirus Disease (Covid-19) CURE.exe.” When run, this executable loaded HawkEye, a keylogger which is capable of intercepting keystrokes, stealing credentials, taking screenshots, and exfiltrating its stolen data.

 

 

Source: https://www.tripwire.com/state-of-security/security-awareness/covid-19-scam-roundup-week-of-3-16-20/

Article Categories: Uncategorized