Top Tweets for #JasperLoader
Thanks to @dez_ and @sysopfb we know that this isn't what I thought it was. Panel calls itself Jasper, so this might be a return of #JasperLoader that last was active a few years ago. Was seen delivering #NetWire.
Nice profiling and persistence both in run key and start-up menu.
01 - 07 Aug 2020: Weekly report of italian campaign malspam with ioc: #Emotet, #AgentTesla, #FormBook, #Ursnif, #JasperLoader, #MassLogger, #HawkEye, #Ave_Maria, #Remcos, #LokiBot (#Hagga) and #Nanocore.
https://t.co/LXLvJs7S0T
@csirt_it @FBussoletti @JAMESWT_MHT @58_158_177_102
Finto "Avviso dell'ufficio delle imposte dell'Italia" veicola #JasperLoader e #FTCode #malspam https://t.co/D7i7O4om2S
#cybercrime, #tasse esca per #phishing in #Italia. Esperti #CyberSecurity: Obiettivo, far scaricare #Malware attraverso link “Lettera di notifica”. Da pc via #JasperLoader e da mobile con codice malevolo #Android. @JAMESWT_MHT @reecdeep @luc4m https://t.co/QJU5DyAkRC #infosec
Watch out! New incoming #malspam wave "Avviso dall'ufficio delle imposte dell'Italia" 🇮🇹
@58_158_177_102 @sugimu_sec @reecdeep @malware_traffic @abuse_ch @JAMESWT_MHT
04 - 10 Jul 2020: Weekly report of italian campaign malspam with ioc
#Ursnif, #Ave_Maria, #FormBook, #Remcos, #JasperLoader and a lot of password stealer
https://t.co/l3O3cZflHB
@58_158_177_102 @csirt_it @AgidCert @fr0s7_ @Bl4ng3l @sugimu_sec @felixw3000 @JAMESWT_MHT @peterkruse
#JasperLoader: #INAIL come esca e #PEC come vettore per diffondere il #malware #in #Italia. Campagna è simile a quella che sfruttava false notifiche dal tribunale di #Napoli per veicolare il #ransomware #FTCODE. https://t.co/qPVHr3UAZr #cybersecurity #awareness @eteria_cloud
#cybercrime, #INAIL esca per diffondere #JasperLoader in #Italia. Esperto #CyberSecurity @reecdeep : campagna #malspam in corso. Sembra simile a una recente che usava stesso #Malware e false notifiche legali per veicolare il #Ransomware #FTCODE #infosec https://t.co/orjrhLt6GZ
⚠️#JasperLoader #Malware is hitting #Italy 🇮🇹
by fake INAIL mail!
https://t.co/Nhe0oekyQP
documents.hopedaletech[.com/l/inail.php?NjAyMDkyMjQ=
❗️main() https://t.co/JAXntb89eC
c2: z2uymda1mtk[.top
@abuse_ch @guelfoweb @VirITeXplorer @Manu_De_Lucia
#infosec #CyberSecurity
#JasperLoader #FtCode
Sample
✳️https://t.co/kh3yB15073
Backup
✅https://t.co/NzaCY1tF1Q
@malwrhunterteam
@VK_Intel
@Ethereal_x0r
@guelfoweb
@James_inthe_box
@Arkbird_SOLG
@sugimu_sec
13 - 19 Jun 2020: Weekly report of italian campaign malspam with ioc.
#HawkEye, #Ave_Maria, #JasperLoader, #NanoCore, #NetWire and a lot of password stealer.
https://t.co/JhIUpFFn0k
@JAMESWT_MHT @peterkruse @fr0s7_ @Bl4ng3l @58_158_177_102 @James_inthe_box
Campagna massiva #JasperLoader veicola #FTCODE via #PEC #IoC #malspam https://t.co/tUGpiIUIbf @SicNazionale
⚠️Fresh #JasperLoader #Malware targets #Italy 🇮🇹
https://t.co/9f9Lec7Un9
1⃣documento.mialeeka,com/l/e.php?NTIwMDA0ODc=
2⃣documento,selltokengarffhonda,com/?need=dfgee52&vid=test1
c2: z2uymda1mtk,top
@abuse_ch @guelfoweb @JAMESWT_MHT @malwrhunterteam @Bl4ng3l
#infosec #cyber
🚨#JasperLoader #Malware is back! #Italy #Italia 🇮🇹
https://t.co/0UdjsNRckM
1⃣pec.tugnutz.]com/l/pec.php?NzcwNjk0MzI=
2⃣pec.minorleaguepub[.com/?need=dfgee52&vid=test1&43731
c2: z2uymda1mtk.]top
@abuse_ch @guelfoweb @JAMESWT_MHT @malwrhunterteam @Bl4ng3l
#infosec #Security
![reecdeep's tweet photo. 🚨#JasperLoader #Malware is back! #Italy #Italia 🇮🇹
https://t.co/0UdjsNRckM
1⃣pec.tugnutz.]com/l/pec.php?NzcwNjk0MzI=
2⃣pec.minorleaguepub[.com/?need=dfgee52&vid=test1&43731
c2: z2uymda1mtk.]top
@abuse_ch @guelfoweb @JAMESWT_MHT @malwrhunterteam @Bl4ng3l
#infosec #Security https://t.co/1NdBeaMM0i](https://pbs.twimg.com/media/EatZa8dX0AI7Jxb.png)
![reecdeep's tweet photo. 🚨#JasperLoader #Malware is back! #Italy #Italia 🇮🇹
https://t.co/0UdjsNRckM
1⃣pec.tugnutz.]com/l/pec.php?NzcwNjk0MzI=
2⃣pec.minorleaguepub[.com/?need=dfgee52&vid=test1&43731
c2: z2uymda1mtk.]top
@abuse_ch @guelfoweb @JAMESWT_MHT @malwrhunterteam @Bl4ng3l
#infosec #Security https://t.co/1NdBeaMM0i](https://pbs.twimg.com/media/EatYYFtWoAAobW6.png)
04 - 10 Apr. 2020: Weekly report of italian campaign malspam with ioc.
#HawkEye, #JasperLoader, #NanoCore, #LokiBot and a lot of password stealer.
https://t.co/zYcYaFquqm
@58_158_177_102 @sugimu_sec @0xFrost @peterkruse @James_inthe_box
Looks like #JasperLoader archives hosted at @DropBox and @GoogleDrive
https://t.co/4qAmNsuFuo
https://t.co/4ripeif63k
@Marco_Ramilli
@JAMESWT_MHT
@malwrhunterteam
@luc4m
@JRoosen
@reecdeep
Last Seen Hashtags on Sotwe
นัดเจอลำปาง
Seen from Thailand
shotta
Seen from Mexico
teenage ()*****
Seen from Turkey
istanbultravesti
Seen from Turkey
milica
Seen from United States
incesto mamando
Seen from Italy
xlii or #exny or #momson or #nolimit() +filter:native_video
Seen from Turkey
Biodiversity
Seen from United States
ringofkerry
Seen from Indonesia
pytthot twerking
Most Popular Users
Elon Musk 
@elonmusk
240.3M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
109.5M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.4M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.7M followers
KATY PERRY
@katyperry
87.1M followers
Taylor Swift
@taylorswift13
80.9M followers
Lady Gaga
@ladygaga
72.5M followers
Kim Kardashian
@kimkardashian
69.5M followers
Virat Kohli
@imvkohli
69M followers
YouTube
@youtube
68.6M followers
Bill Gates
@billgates
63.6M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61.7M followers
X
@x
60.9M followers
Selena Gomez
@selenagomez
60.2M followers