Javali
Javali is the name of a banking Trojan, which goes after Windows users. Malware experts first identified the Javali banking Trojan back in 2017. According to researchers, the Javali banking Trojan is being distributed via carefully crafted fake emails. Phishing emails are a very popular infection vector, which is the preferred distribution technique by countless cybercriminals around the world. Usually, the emails in question would either contain a macro-laced attachment or a malicious link, which urges the user to download an unsafe file from a shady external location.
The Javali banking Trojan appears to mainly target users located in Mexico and Brazil. However, recently the Javali project has been expanding and therefore targeting users from other regions too. The phishing emails distributing the Javali banking Trojan contain a '.ZIP' or '.RAR' archive, which is over 600MB in size. The large size of this file surprised malware analysts who were studying the Javali banking Trojan. The idea behind the large file is to conceal the malicious payload of the Javali banking Trojan by mixing it up with many useless but also harmless files. According to cybersecurity experts, the total size of the Javali banking Trojan is just about 27.5MB.
As we mentioned, the Javali banking Trojan has been used to target Brazilian and Mexican users mainly. However, the authors of the Javali Trojan have updated this project and have expanded their reach. According to reports, the Javali banking Trojan is now capable of targeting financial institutions and organizations outside of the Brazilian and Mexican regions too. Users targeted by the Javali banking Trojan will be presented with a fake overlay whenever they try to access their banking portal of choice. This may result in the Javali Trojan obtaining sensitive information such as personal data, login credentials, and banking details from the victim.
If you want to avoid falling victim to the Javali banking Trojan, it is advisable that you install a reputable, modern antivirus software suite that will protect your computer and your data.
