![]() CHM files are interactive and can run JavaScript, for example, which the attackers use to redirect victims to external URLs. Currently only eight out of 60 AV scanners identified the CHM file attachments as malicious, he said.Īttackers are taking advantage of the proprietary Microsoft online help format called Microsoft Compiled HTML Help, or CHM. He added, the multiple stage infection technique used to deliver the Trojan is effective at obfuscating the malware from detection. ![]() Spam messages contain a malicious CHM attachment called “comprovante.chm”, wrote Rodel Mendrez, senior security researcher at Trustwave in a technical write-up outlining the research. ![]() Security researchers are warning of a new spam campaign targeting Brazilian institutions that contain Compiled HTML file attachments that are used to deliver a banking Trojan.
0 Comments
Leave a Reply. |