Objective: to block the partial mobilization against Ukraine, hitting logistics and communications. The group is part of IT Army of Ukraine.
Cyber security experts Malware Hunter Team and JAMESWT: A fake phishing Paypal page hides a malicious exe, disguised as the Desktop app
Fake PayPal website is been used by cybercrime to spread an Info-stealer, maybe Racealer or a similar skidware malware. It has been discoverd by cyber security expert Malware Hunter Team. The phishing page contains a link to download the Desktop app. But in reality, according to JAMESWT, it’s fake exe application, that starts the infection chain. The malware can steal credit cards, usernames, passwords and cryptocurrency wallets. Furthermore, it’s a sold with updates and support as Malware-As-A-Service (MaaS).