- Feb 4, 2016
- 2,520
A malspam campaign is underway that pretends to be an invoice for an outstanding payment. When these invoices are opened they install the AZORult information stealing Trojan and the Hermes 2.1 Ransomware onto the recipient's computer.
A recent sample of this campaign was shared with BleepingComputer by security researcher Yves Agostini, which was identified as installing AZORult and Hermes 2.1.
As always, beware of fake invoices or other unknown attachments. Furthermore, never open an attachment unless you are expecting it from the sender and have confirmed that they actually sent it to you. Otherwise, you never know what you will be opening and potentially infecting yourself with.