Analysis by: Franz Ryan Englis

TorrentLocker takes advantage of the 2015 tax season in the ANZ region. Trend Micro researchers found a spammed message that lures users by using penalty tax in its subject. When users click on the More Information button, they are led to the following landing page while the cryptolocker malware TROJ_CRILOCK.XWE is downloaded on users' systems:

Trend Micro users are protected from this threat. Trend Micro products using the File, Web, and Email Reputation services effectively block access to the malicious sites and the email, and detect the malware.

 SPAM BLOCKING DATE / TIME: March 05, 2015 GMT-8
 TMASE INFO
  • ENGINE:7.5
  • PATTERN:1378