Phishing email that hides QRat malware (Source: Trustwave)
A recently spotted phishing campaign used the offer of a President Donald Trump video as a lure to spread the QRat Trojan that can steal passwords, take screenshots and enable attackers to take over a compromised Windows devices, according to the security firm Trustwave SpiderLabs.
Although the phishing emails spotted last month featured loan offers and a subject line about a “good return on investment,” they also contained an attached file claiming to offer a video of Trump. This file hid the QRat malware, according to the report.
QRat, which is also known as Quaverse RAT, was first spotted by researchers in May 2015. It can remain undetected because of multiple layers of obfuscation. The malware offers many functions, including the ability to steal passwords, act as a keylogger, take screenshots and browse files, according to previous reports.
Related Keywords
Dridex Trojan , Donald Trump , Diana Lopera , Qrat Trojan , Qrat Trojanakshaya Asokan , Trustwave Spiderlabs , Phishing Campaign Spread Trojan , Phishing Campaign Spread Trojanresearchers , Fraud Management , Themed Phishing Campaign Spread Trojanresearchers , Link Portrayed , Trump Video Loaded , Trojanakshaya Asokan , Themed Phishing Campaign Spread Trojan , President Donald Trump , Threat Outlook , Java Archive , Targets Cryptocurrency Wallets , Western Europe , Interference Themed Spam Spreads Banking Trojan , டொனால்ட் துருப்பு , மோசடி மேலாண்மை , துருப்பு காணொளி ஏற்றப்பட்டது , ப்ரெஸிடெஂட் டொனால்ட் துருப்பு , அச்சுறுத்தல் ஔட்லுக் , ஜாவா காப்பகம் , இலக்குகள் கிரிப்டோசுர்ரெனசி பணப்பைகள் , மேற்கு யூரோப் , குறுக்கீடு கருப்பொருள் ஸ்பேம் பரவுகிறது வங்கி ட்ரோஜன் ,
vimarsana.com © 2020. All Rights Reserved.