Security News > 2022 > April > Emotet is Back From ‘Spring Break’ With New Nasty Tricks
Emotet malware attacks are back after a 10-month "Spring break" - with criminals behind the attack rested, tanned and ready to launch a new campaign strategy.
The latest activity observed by researchers occurred while Emotet was on a "Spring break." Efforts were lowkey and likely an attempt to test new tactics without drawing attention.
If these XLL files are opened and executed, Emotet will infect the machine with malware.
Earlier Emotet attempted to spread itself via Microsoft Office attachments or phishing URLs.
The attacks associated with this new campaign took place between April 4, 2022 and April 19, 2022, when other widespread Emotet campaigns were put on hold, researchers said.
"After months of consistent activity, Emotet is switching things up. It is likely the threat actor is testing new behaviors on a small scale before delivering them to victims more broadly, or to distribute via new TTPs alongside its existing high-volume campaigns," said Sherrod DeGrippo, vice president of threat research and detection at Proofpoint.