The bait this time is the unexpected closure of the account and some pending messages. With the excuse of fixing the error, threat actors try to steal the credentials.
Technical analysis by the Malware Hunter JAMESWT
New Formbook global campaign via a fake wire transfer. The email .Gz attachment contains an exe, the malware itself. The goal of the cybercrime is to steal sensitive data from victims
New Formbook global campaign explotis a fake mail on a wire transfer.
The message contains a .Gz attachment with an exe inside: the malware. The goal of cybercrime is to steal sensitive data from victims. FormBook, in fact, through the keylogger function, is able to acquire everything the user types. It can also steal email and browser credentials, as well as take screenshots. Finally, it has the ability to remotely issue commands on the infected PC, such as downloading additional payloads or updating those present.