A massive malware campaign has been making noise in Brazil. The first sample: virustoal released on DEC 2016.
Overview
A massive network spread of malware was release on DEC 2016 and after the first sample, the network provider was used to send more than 8k of malware in less than 1 year of working.
the number of total of victims still under investigation.
But all targets seems to be store and online shopping. Some of these malware are a stealer banker.
Recommendations
Ensure anti-virus software and associated files are up to date.
Search for existing signs of the indicated IoCs in your environment.
Consider blocking and or setting up detection for all URL and IP based IoCs.
Keep applications and operating systems running at the current released patch level.
Exercise caution with attachments and links in emails.
Reference: https://otx.alienvault.com/pulse/5eb742b4e92fc1033e63333c
