Emotet spam trojan surges back to life after 5 months of silence

[silversurfer]

After months of inactivity, the notorious Emotet spamming trojan has come alive again as it spews out a massive campaign of malicious emails targeting users worldwide.

Binary Defense researcher James Quinn told BleepingComputer that Emotet was last seen on Feb 7th, 2020, after which the spamming trojan went quiet and has not sent out any spam emails since.

While the Emotet tracking group Cryptolaemus has been tracking the infection and has seen its malicious modules being updated over time, there has been no spamming conducted by the botnet other than some small tests earlier this week.

Today, Emotet suddenly surged back to life with reply-chain, shipping, payment, and invoice spam that deliver malicious Word documents spreadsheets.

 

[silversurfer]

Emotet-TrickBot malware duo is back infecting Windows machines

After awakening last week and starting to send spam worldwide, Emotet is now once again installing the TrickBot trojan on infected Windows computers.

www.bleepingcomputer.com

Emotet botnet is now heavily spreading QakBot malware

Researchers tracking Emotet botnet noticed that the malware started to push QakBot banking trojan at an unusually high rate, replacing the longtime TrickBot payload.

www.bleepingcomputer.com

 

[ab14]

It's back! Emotet malware returns after a five-month break

 

[silversurfer]

Emotet malware now steals your email attachments to attack contacts

The Emotet malware botnet is now also using stolen attachments to increase the authenticity of spam emails used for infecting targets' systems.

www.bleepingcomputer.com

"Emotet seems to be using not only stolen email bodies, but is now including stolen attachments as well," email security firm Cofense said today.
"This lends to even more authenticity in their phishing emails. In one example we found 5 benign attachments and a dropper link within the templated portion of the email."

 

[silversurfer]

Emotet malware's new 'Red Dawn' attachment is just as dangerous

The Emotet botnet has begun to use a new template for their malicious attachments, and it is just as dangerous as ever.

www.bleepingcomputer.com

 

[silversurfer]

Epic Fail: Emotet malware uses fake ‘Windows 10 Mobile’ attachments

The Emotet malware is now using malicious email attachment that pretends to be made by Windows 10 Mobile, an operating system that reached the end of life in January 2020.

www.bleepingcomputer.com