Lokibot via fake Reconfirm Bank Account Details with extremely large rtf attachment

We are still not seeing a lot of interesting malware in UK at the moment, but this one has a few interesting parts to the delivery system. The Lokibot binary that is eventually delivered is nothing special and we see this sort of commodity malware on an almost daily basis. What is slightly unusual is the size of the word doc ( RTF ) attachment which is  2.7mb is size but doesn’t appear to contain anything that accounts for the large size. I would have thought that the bad actors would have embedded some sort of ole object with the … Continue reading →

Article Link: https://myonlinesecurity.co.uk/lokibot-via-fake-reconfirm-bank-account-details-with-extremely-large-rtf-attachment/