The infamous TrickBot trojan has returned in a massive phishing attack targeting several states in the U.S. The affected states include California, Maryland, Illinois, New York, Texas, Minnesota, and New Jersey.
How did it operate?
According to researchers from 360 Total Security Center, the attacks were carried out using phishing emails.
How does TrickBot evade detection?
After TrickBot is successfully installed, it uses a variety of code obfuscation techniques to hide itself. The modules used by the malware are:
Publisher