A banking malware called ZLoader, last seen in early 2018, has been spotted in more than 100 email campaigns since the beginning of the year.
The trojan is under active development with 25 versions seen in the wild since its comeback in December 2019, the latest one observed this month.
Lighter on advanced features
The malicious email campaigns target users in the U.S., Canada, Germany, Poland, and Australia with lures related to the COVID-19 topics (tips to avoid scams, testing) and invoices.
Researchers at Proofpoint note in a
report today that the ZLoader distributed this way is different from the original variant observed between 2016 and 2018. They believe the new version is a fork of the previous one.
... ...
New IcedID variants shift from bank fraud to malware delivery
New FluBot and TeaBot campaigns target Android devices worldwide