Malware hidden in Fake Tesla test drive invites

Beware of Fake Tesla test drive invites. These invites are being sent out to unaware internet users as an attachment. Once the attachment is opened, the users will launch a piece of malicious code that will download and install the well known Dridex malware.

The twitter user @reecdeep warned on Twitter that the malware is hiding itself in the fake Tesla test drive attachment.

Tesla Test drive Dridex malware

Fake Tesla test drive

The document itself looks like the image below, but please stay cautious as the threat actor(s) can easily adjust the used template and topic.

Dridex malware hidden in fake protected document

reecdeep was kind enough to share the indicators of compromise:

  • 216.10.242.142:6601
  • 116.251.211.158
  • 37.247.35.137:6601

Share this information