LokiBot Trojan Spotted Hitching a Ride Inside .PNG Files

Spam campaign features obfuscated .zipx archive that unpacks LokiBot attack.

A spam campaign pushing the info-stealing LokiBot trojan leverages a novel technique to avoid detection. According to researchers, the spam messages include malicious .zipx attachment hidden inside a .PNG file that can slip past some email security gateways. According to Trustwave SpiderLabs, that first spotted the .PNG/LokiBot messages, the spam campaigns delivering the trojan have been limited in scope, so far.

Read more…
Source: ThreatPost