Agent Tesla Infects Computers via Microsoft Excel Vulnerability

Recently, attackers have been actively exploiting a vulnerability in Microsoft Office that was first discovered more than six years ago in order to spread the malicious agent Tesla. Reports from zscler Threatlabz and Fortinet Fortiguard Labs testify to the fact that cybercriminals are using fake Excel documents disguised as invoices in their phishing campaigns.

Agent Tesla is an advanced Keilger and Trojan that provides remote access. It is based on the platform, and includes several main components such as the .NET execution environment, .NET classes, and programming languages.

The .NET framework is commonly used to create a variety of applications, including desktop, web, and mobile applications, as well as games and web server services.

/Reports, release notes, official announcements.