DanaBot Trojan Expands Beyond Banking

DanaBot Trojan Expands Beyond Banking

Banking Trojan DanaBot has reportedly resurfaced with some new tricks. According to malware analysts at ESET, the Trojan has evolved beyond banking and is now being used to send spam directly to a victim’s inbox.

Researchers found that by injecting JavaScript code into specific pages of web-based email services, the malware sends malicious email responses to actual messages in the victim’s inbox. Additionally, the decoy PDF attached to these emails contains a malicious VBS file.

“Its operators have recently been experimenting with cunning email-address-harvesting and spam-sending features, capable of misusing webmail accounts of existing victims for further malware distribution,” ESET wrote.

By Kacy Zurkus

To read the full article click here.