German-speaking users targeted in new malware campaign

Miscreants are after banking credentials using a new strain of an old trojan.
Miscreants are after banking credentials using a new strain of an old trojan.

German and Austrian computer users are being targeted with a new malware campaign, according to security researchers at Fortinet.

Indications are that the point of the malware, dubbed DELoader, is to load further malware onto systems. It achieves this, Fortinet explains, via malicious emails with attachments that deliver JavaScript downloaders.

While registrant details name a user in Russia, “Aleksandr,” the researchers still remain uncertain of the malware's intentions, although they said these exact registrant details were used previously to register malicious domains.

And, they detected that one of the malicious tools Aleksandr used in this current campaign was a Zeus variant, the infamous banking trojan, which indicates the miscreants are after banking credentials.

As the person or group behind this latest campaign have left digital fingerprints previously, the Fortinet researchers conclude that they expect these sorts of campaigns to continue beyond German-speaking targets.
You must be a registered member of SC Magazine to post a comment.

Sign up to our newsletters

TOP COMMENTS