The zip attachment contains an exe file: the malware itself. This, if opened, activates the infection.
Malware Hunter JAMESWT Technical Analysis
The new Formbook campaign is conveyed through a false request for product quotation. The email gz attachment contains an exe file: the malware itself. This, if opened, starts the infection
An email about a false request for a product quotation from a real company conveys a new Formbook campaign.
The gz attachment of the message contains an exe file, the malware itself.
This, if opened, starts the infection. The goal of cybercrime is to steal sensitive data from victims. Formbook, in fact, through the keylogger function, is able to acquire everything the user types. It can also steal email and browser credentials, as well as take screenshots. Finally, it has the ability to remotely issue commands on the infected PC, such as downloading additional payloads or updating those present.