Researchers analyzed multiple AgentTesla infection chains that begin with heavily obfuscated JScript files executed by wscript.exe, often delivered as phishing attachments and, in one case, an RFQ-themed spear-phishing lure named "RFQ No 600002389875 RG724.JS". The scripts used layered evasion including centralized string arrays, index arithmetic, control-flow flattening, junk code, string reversal, delimiter noise, and a regex-based anti-debugging technique. In the Firebase-backed variant, the dropper retrieved a second-stage PowerShell payload from a Google Firebase Storage bucket, saved it to C:\Temp\ under a randomized filename, and launched it with execution-policy bypass and hidden-window options, allowing malicious traffic to blend with trusted Google infrastructure.
A related loader variant dropped PE payloads disguised as .png files into C:\Users\Public\, executed PowerShell in memory through a base64-decoded IEX command, and established persistence via the HKCU\Run registry key. The activity was linked to commodity cybercrime and the AgentTesla credential-theft family, which is commonly associated with credential harvesting, keylogging, screenshot capture, and data exfiltration over SMTP, FTP/FTPS, or HTTP/HTTPS. Detection remained relatively low across samples, with reports citing 14/76 and 20/76 antivirus detections at initial analysis, underscoring the effectiveness of the campaign’s obfuscation and abuse of legitimate cloud services.

Mallory correlates global threat intelligence with your attack surface — know if you’re exposed before adversaries strike.
4 events from the most recent confirmed update back to the earliest known activity.
Breakglass Intelligence published technical details for the AgentTesla-related droppers, including file hashes, network and process-chain indicators, ATT&CK mappings, and anti-analysis techniques. The Firebase-staged sample showed low VirusTotal detection at 14/76 on 2026-03-12, while the RFQ-themed sample had 20/76 detections at first submission the same day.
A separate Breakglass Intelligence analysis documented an RFQ-themed spear-phishing lure distributing a JScript file named "RFQ No 600002389875 RG724.JS". The script dropped PE payloads disguised as .png files, launched a base64-decoded PowerShell IEX command, and established persistence via the HKCU Run registry key, with static analysis linking it to AgentTesla.
Breakglass Intelligence analyzed a heavily obfuscated Windows Script Host JScript sample used as the first stage of an AgentTesla credential-theft campaign. The script downloaded a second-stage PowerShell payload from a Google Firebase Storage bucket, saved it in C:\Temp\ under a randomized filename, and executed it with PowerShell execution-policy bypass flags.
FortiGuard Labs published threat research detailing a multi-stage AgentTesla campaign. The report appears to predate the later Breakglass analyses and constitutes a distinct technical disclosure about the malware’s delivery and execution chain.
Vulnerabilities, threat actors, malware, products, organizations, and breaches Mallory has linked to this story.
4 references tracked. Mallory keeps watching after this page renders.
intel.breakglass.tech
Open sourceintel.breakglass.tech
Open sourceintel.breakglass.tech
Open sourcefortinet.com
Open sourceMap indicators from this story to your assets and identify affected systems in minutes.
Every observed campaign, victim, and pivot linked to actors named in this story.
Malware, exploits, and IOCs connected to the activity described here.
YARA, Sigma, and Snort rules deployed to your SIEM as soon as they’re published.
Get matching new stories delivered to your team as they break — not the next morning.
Ask questions about this story and take action on the answers.