Our desire for timely information on Coronavirus helps propel malevolent social engineering to success around this theme. From 21 to 24 March, the Infoblox threat intelligence researchers observed yet another malicious spam email campaign. This one used a fraudulent Coronavirus alert from the World Health Organization (WHO) to deliver Trickbot banking malware.
Trickbot is a modular banking trojan that targets customers of major banks. Once Trickbot infects a victim, it will attempt to steal sensitive financial information and exfiltrate that data to a command and control (C2) server. Trickbot also attempts to move laterally across vulnerable networks to infect additional systems.
To find out more detailed information about this emerging threat please download our report here: https://insights.infoblox.com/threat-intelligence-reports/threat-intelligence–66