Personalized Email Subject
Spoofed Display Name
Maliciously Registered Domain
Personalized Email Subject
No items found.
No items found.
Back to All Attacks
Attack Details
Attack Date:
May 13, 2022

Executive Impersonation Payroll Diversion BEC Attack

Initial Email Content

Subject
Good morning [Recipient First Name],
Body

Trust you're good? I need to change my direct deposit for payroll. My present account on file is no longer active. I’m putting in a replacement account.


You will probably be needing my new account and routine numbers?


Kind Regards


[Executive First Name] 

Attack Screenshots

No items found.
No items found.

Malicious Artifacts

Additional Indicators of Compromise

Type

Description

No items found.

Attack Description

This text-based BEC attack impersonates an executive using a personalized email subject, a spoofed display name, and a maliciously registered domain to divert payroll deposits to a fraudulent account.

Analysis Overview

Type
Business Email Compromise
Tactic
Personalized Email Subject
Spoofed Display Name
Maliciously Registered Domain
Goal
Payroll Diversion
Impersonated Party
Employee - Executive
Vector
Text-based
Theme
No items found.
Language