The xz attachment of a fake bank email contains an exe file: the malware.
SWIFT transaction-themed Formbook campaign from Turkey. The email rar attachment contains an exe file: the malware
A fake SWIFT transaction from a bank in Turkey is the bait of a new global Formbook campaign.
The rar attachment of the email contains an exe file: the malware. Formbook, through the keylogger function, is able to acquire everything the user types. In addition, it can steal email and browser credentials, as well as take screenshots. Finally, it has the ability to remotely issue commands on the infected PC, such as downloading additional payloads or updating those present.