/i.s3.glbimg.com/v1/AUTH_1f551ea7087a47f39ead75f64041559a/internal_photos/bs/2023/o/f/PWy6jxSeCxux1GWVkI0g/favicon.png){kind=small}
Overview
- Maverick arrives as a ZIP attachment containing a malicious .LNK shortcut that executes the trojan when opened on a computer.
- The malware records keystrokes and screenshots, fabricates credential pages, and seeks banking logins and tokens.
- It checks language, time zone, and region settings and proceeds only on systems configured for Brazil.
- Once active, it uses WhatsApp Web to automatically resend the infected file to the victim’s contacts and groups.
- Kaspersky reported more than 62,000 blocked infection attempts in Brazil in early October, and experts advise avoiding unexpected attachments, enabling two-step verification, running full antivirus scans, changing passwords, and reinstalling the OS if necessary.