The arrival of spring brings many good things, but it’s also prime season for tax-themed phishing emails. A partner of ours recently reported an email with the subject “Your Tax rebate” that contained an attachment with Dridex and password-protected macros to hinder analysis. If you read this blog, this story should sound familiar, but this particular strain took new precautions, such as adding a longer password and using VM detection inside of the code.
more here.......http://phishme.com/dridex-code-breaking-modify-the-malware-to-bypass-the-vm-bypass/
more here.......http://phishme.com/dridex-code-breaking-modify-the-malware-to-bypass-the-vm-bypass/