By Eduard Kovacs on March 05, 2015
Researchers at IBM Trusteer have come across a new banking Trojan that is designed to target the customers of Japanese financial institutions.
Dubbed “Tsukuba” after the Japanese city, the malware is not very sophisticated from a technical standpoint, but its social engineering engineering techniques make it highly efficient in harvesting personal and financial information, researchers said.
Tsukuba is a proxy changer malware that hijacks victims’ browsers in an effort to redirect them to malicious websites.
The Trojan is distributed through spam emails. Once it’s executed, the threat leverages the Windows PowerShell scripting tool to hide its presence while it communicates with the command and control (C&C) server and downloads components.
Full Article
Tsukuba Banking Trojan Targets Users in Japan
+54Login to the community
No account yet? Create an account
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.