Trusted Design

Teslacrypt Spam Campaign: “Unpaid Issue…”

概要

Cyber criminals continue to use exploit kits to infect victims with ransomware but they also use MALSPAM emails to lure possible victims – a key vector into an enterprise environment that lacks the proper security controls, and one with insufficient information security training for end users. Some examples are email messages claiming to be in regards to an overdue bill or invoice, utilizing such terminology in the subject line and given file name, such as invoice.zip or payment_doc_298427.zip

Created: 2026-02-23

Indicators

• domain - tele-channel.com -
• domain - goonwithmazerqq.com -
• domain - blizzbauta.com -
• domain - multibrandphone.com -
• domain - mafianeedsyouqq.com -
• domain - howareyouqq.com -
• domain - gutentagmeinliebeqq.com -
• domain - lenovowantsyouqq.com -
• domain - sappmtraining.com -
• domain - blablaworldqq.com -
• domain - joecockerhereqq.com -
• domain - lenovomaybenotqq.com -
• domain - yesitisqqq.com -
• domain - helloyoungmanqq.com -
• domain - isthereanybodyqq.com -
• domain - itisverygoodqq.com -
• domain - hellomydearqq.com -
• domain - mafiawantsyouqq.com -
• domain - vtechshop.net -
• domain - hellomisterbiznesqq.com -
• domain - shirongfeng.cn -
• domain - controlfreaknetworks.com -
• domain - arendroukysdqq.com -
• domain - hellomississmithqq.com -
• hostname - www.thisisyourchangeqq.com -
• domain - fromjamaicaqq.com -
• domain - invoiceholderqq.com -
• domain - thisisitsqq.com -
• domain - witchbehereqq.com -
• domain - soclosebutyetqq.com -

類似Pulses

• Invoice from CimQuest INGEAR – JS malware Teslacrypt (score: 0.73)
• Teslacrypt malware Reference Numer # , Notice of Unpaid Invoice (score: 0.71)
• THL 2015-12-22: TeslaCrypt Ransomware (score: 0.64)
• Dynamoo 2015-12-11: Malware spam "Invoice #" leads to Teslacrypt (score: 0.64)
• Threat Spotlight: TeslaCrypt (score: 0.64)

このPulseに関連する脅威アクター (事実ベース)

このPulseに関連する脅威アクター (推論ベース)

Related CVEs

このPulseに見つかったCVEはありません。

Pulse – 脅威アクター グラフ

---

← Pulse一覧に戻る