What is CoreBot? Nefarious banking trojan resurfaces to target customers using malicious spam emails
Credit:
Security researchers have discovered the sophisticated banking trojan CoreBot is making a comeback to target online banking customers via phishing emails. The nefarious CoreBot trojan was mainly active during the summer of 2015.
However, researchers at Deep Instinct noticed a new, modified variant of the malware is being distributed via malicious spam emails with Microsoft Office documents attached.
"The documents contained VBA scripts which users were tricked to run, leading to the payload being downloaded and executed," Deep Instinct researchers Tal Leibovich & Shaul Vilkomir-Preisman said in a blog post on Wednesday (1 November), noting that the latest campaign seemed to have begun on Tuesday.