Jump to content


Metamorfo Targets Brazilian Users with Banking Trojans

  • Please log in to reply
No replies to this topic

#1 TheSentinel


    The man in the dark

  • General Admin
  • 31,818 posts

Posted 26 April 2018 - 05:36 PM

April 25, 2018 , 1:27 pm

Metamorfo Targets Brazilian Users with Banking Trojans
by Tara Seals
Categories: Malware    

A recent spate of financial malware campaigns targeting Brazilian companies, collectively dubbed Metamorfo, uses “spray and pray” spam tactics to ensnare their victims. Across the various offensives, the bad actors are abusing  legitimate, signed binaries to load the malicious code. As the name Metamorfo suggests, the campaigns share much in common – including the use of a multi-stage infection path, the use of a legitimate Windows tool as a side-loader and the use of cloud storage to host the bad code – but with slight, morphing differences.

Read details on that at: