Malware research lab ESET detected a new banking malware ‘Hesperbot’, which reportedly targets online banking users in Europe and Asia and steals log-in credentials.
The research lab reported that the malware steals bank users’ log-in credentials with techniques such as creating desktop screenshots and video capture, and sets a remote proxy, while including other techniques such like creating a hidden remote connection to the infected system.
ESET’s LiveGrid data cloud-based malware collection system has detected several infections in Turkey, the Czech Republic, the UK and Portugal.
The new malware spreads via phishing-like emails, while is also infectious to mobile devices powered by Android, Symbian and Blackberry operating systems.
ESET malware researcher Robert Lipovsky said that analysis of the threat revealed a banking trojan, with similar functionality and identical goals to the infamous Zeus and SpyEye, but significant implementation differences indicated that this is a new malwarefamily, not a variant of a previously known Trojan.
"ESET products like ESET Smart Security and ESET Mobile Security protect against this malware," Lipovsky said."It’s probably not surprising that the attackers tried to lure potential victims to open the malware by sending phish-like emails resembling parcel tracking information from the Postal Service.
"This technique has been used many times before."
