Intel Name: Coyote banking trojan: a stealthy attack via lnk files
Date of Scan: February 3, 2025
Impact: Medium
Summary: The Coyote Banking Trojan is a malware targeting users in Brazil, delivered through LNK files containing PowerShell commands. These files are part of multi-stage attacks aimed at stealing sensitive information from over 70 financial apps and websites. Once activated, the Trojan performs malicious activities like keylogging, taking screenshots, and using phishing overlays to capture credentials.