Welcome to our

Cyber Security News Aggregator

.

Cyber Tzar

provide a

cyber security risk management

platform; including automated penetration tests and risk assesments culminating in a "cyber risk score" out of 1,000, just like a credit score.

Agent.Tesla Dropped via a .daa Image and Talking to Telegram, (Sat, Jul 24th)

published on 2021-07-24 06:47:29 UTC by
Content:
A few days ago, I found an interesting file delivered by email (why change a winning combination?). The file has a nice extension: “.daa” (Direct Access Archive). We already reported such files in 2019 and Didier wrote a diary[1] about them. Default Windows installation, can’t process “.daa” files, you need a specific tool to open them (like PowerISO). I converted the archive into an ISO file and extracted the PE file inside it.
Article: Agent.Tesla Dropped via a .daa Image and Talking to Telegram, (Sat, Jul 24th) - published over 3 years ago.

https://isc.sans.edu/diary/rss/27666   
Published: 2021 07 24 06:47:29
Received: 2021 07 24 10:00:33
Feed: SANS Internet Storm Center, InfoCON: green
Source: SANS Internet Storm Center, InfoCON: green
Category: Alerts
Topic: Vulnerabilities
Views: 1

Custom HTML Block

Click to Open Code Editor