14 DAY TRIAL // Operators of the Asprox network of infected computers disseminate malicious emails promising access to a free gift card that can be used at Startbucks locations.
The goal of the campaign is to increase the botnet that has been involved in the distribution of different malware pieces; Asprox is also known under the name of Kuluoz and its main functionality is to deliver massive amounts of spam.
The recent wave of malicious emails claim to come from AT&T and offer an eGift worth $20 (€16) that can be used at Starbucks for any beverage that fits the price.
It appears that the message offers the possibility to print the gift card available at a specified address; when the victim tries to downlaod the card, the Asprox malware piece is served instead, according to Hoax-Slayer.
Installing the downloaded file is the cybercriminal’s chance of free access to the compromised computer.
Asprox can be used for a slew of nefarious purposes, not just for sending out spam. It can funnel in threats that have been specifically created to steal financial information or to exfiltrate credentials for different online accounts.
A botnet can also be used to infiltrate the network of certain organizations by deploying an attack from an infected system.