Lumension® Endpoint Intelligence Center

Intelligence Center » News Archive » Vawtrak trojan downloaded via malicious macro for Microsoft Word

Vawtrak trojan downloaded via malicious macro for Microsoft Word

2015/02/17

Softpedia - (International) Trend Micro security researchers discovered a new cyber criminal campaign targeting banks including Bank of America, Barclays, Citibank, HSBC, Lloyd's Bank, and J.P. Morgan with emails containing malicious macro-enabling Microsoft Word documents that install the Vawtrak banking trojan by downloading a batch file, a visual basic scripting edition (VBS script), and Powershell file. The malware serves clients modified pages to trick them into providing log in data for Microsoft Outlook, Google Chrome, Mozilla Firefox, and file transfer protocol (FTP) clients.

Source: http://news.softpedia.com/news/Vawtrak-Trojan-Downloaded-Via-Malicious-Macro-for-Microsoft-Word-473438.shtml

Note: This news synopsis is taken from the DHS Daily Open Source Infrastructure Report, a daily [Monday through Friday, except US Federal holidays] summary of open-source published information concerning significant critical infrastructure issues; a 10-day archive of the DOSIR can be found at: http://www.dhs.gov/dhs-daily-open-source-infrastructure-report.


Last Updated: 27 May 2016 10:23:28