There are only a few days are left for Donald Trump from leaving the White House. The outgoing US president is continuously catching the Public’s attention for all the wrong reasons. While on the other hand, hackers are trying to spread malware through a new email scam using Trump scandalous video.
Trustwave researchers found a new variant of the Quaverse Remote Access Trojan (QRAT) delivered via malicious emails that show users a scandalous video of Trump. However, it’s serving as a remote-access trojan.
A remote-access trojan is a computer program used to access the unsuspecting user’s computer in the form of another program for installing or accessing music or movies. Users downloading or installing programs from anonymous websites might also be in peril of affecting their systems.
The email that is aired to users carries the subject “GOOD LOAN OFFER!!”, and encompass an attachment containing a Java Archive (JAR) file named “TRUMP_S**_SCANDAL_VIDEO.jar”, researchers stated. The blog.post also states that the trojan has similarities with other malware, previously exposed and only works on Windows.
Users are given by a dialogue box which informs them that a remote-access program needs to be installed for network penetration testing when they download and open the attachment. When they click the “Ok, I know what I am doing” button will give the creators of trojan remote access to their computer.
According to the Trustwave researcher Diana Lopera, the researchers deduce that the trojan creators were trying to “ride the frenzy” agitated by the Presidential elections concluded recently. And the filename they used on the attachment was totally irrelevant to the theme of email.