New Version of Mekotio Banking Trojan Deployed in the Wild

According to malware researchers, a new stealthier version of banking trojan Mekotio has been spotted in the wild.

Mekotio was last seen in the summer of 2020 targeting Latin American countries.

Vector of infection stayed the same, with the Spanish language being the language of choice of the phishing emails which are the method used for the malware distribution.

The new elements which make the trojan harder to detect are the stealthier batch file, new file-less PowerShell script, and the use of Themida v3 for packing the final DLL payload.


Read More

Got Something To Say?

Your email address will not be published.