Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- ### IOCs for malware email campaign with .gadget files attachments ###
- Fake 'From' email address - 'hp.digital0@nactp.org'
- Received: from llagny-156-34-41-28.w80-14.abo.wanadoo.fr (LLagny-156-34-41-28.w80-14.abo.wanadoo.fr. [80.14.197.28])
- ## Email body:
- Content-Type: text/plain
- Content-Transfer-Encoding: 8bit
- Important Company Update
- *********************************
- Please read carefully the attached document
- **********************************
- CONFIDENTIAL NOTICE: The contents of this message, including any attachments, are confidential and are intended solely for the use of the person or entity to whom the message was addressed. If you are not the intended recipient of this message, please be advised that any dissemination, distribution, or use of the contents of this message is strictly prohibited. If you received this message in error, please notify the sender. Please also permanently delete all copies of the original message and any attached documentation. Thank you.
- ## Attachment header:
- Content-Type: application/zip; name="internal_use_only.gadget"
- Content-Transfer-Encoding: base64
- Content-Disposition: attachment; filename="internal_use_only.gadget"
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement