- Jul 27, 2015
- 5,458
Update on the file shows the same.
Quote : " For the past weeks, security researchers analyzed various spam campaigns and found one containing a malicious Hancitor trojan. Cybercriminals use the spam email as an attack vector and lure victims to click the malicious Word documents that will drop a malware cocktail inside their PCs. "
" Malware cocktails such as these keep changing their composition which makes it harder for antivirus programs to detect it during the first hours or even days. It easily flies below their radar and let users’ devices very exposed to online threats. They continue to have a high rate of success for malicious actors who still find new ways to attack victims and access vulnerable devices. Malware cocktails manage to infect easily those machines which are based on reactive protection-only. "
" Attackers use a WebDav server to launch arbitrary commands and execute malicious/infected files on a vulnerable machine by connecting to a Hancitor C&C server.
Hancitor is a malicious Trojan downloader that drops both Pony and Evil Pony malware on the targeted machine. Cybercriminals will try to launch an attack operating the Panda ZeuS botnet. "