Alerts
Events
DCR
Explore Cyware Products
Alerts
Events
DCR
Go to listing page
Phishing Campaigns featuring Ursnif Trojan on the Rise | McAfee Blog
Malware and Vulnerabilities
June Fr, yyyy
McAfee
The initial attack vector is a phishing email with a Microsoft Word document attachment. Upon opening the document, VBA executes a malicious shellcode. Shellcode downloads the remote payload, Ursnif, and invokes rundll32.exe to execute it.
Read More
Phishing Campaigns
Ursnif Trojan
VBA macros
Shellcode
Remote Payload
Publisher
Previous
Update: Vice Society ransomware claims attack on Italia ...
Breaches and Incidents
Next
Multifactor authentication could be long haul for some ...
Expert Blogs and Opinion