Coyote banking trojan: a stealthy attack via lnk files

Intel Name: Coyote banking trojan: a stealthy attack via lnk files

Date of Scan: February 3, 2025

Impact: Medium

Summary:
The Coyote Banking Trojan is a malware targeting users in Brazil, delivered through LNK files containing PowerShell commands. These files are part of multi-stage attacks aimed at stealing sensitive information from over 70 financial apps and websites. Once activated, the Trojan performs malicious activities like keylogging, taking screenshots, and using phishing overlays to capture credentials.

More Details