A series of malware campaigns that push the More_eggs backdoor via fake jobs offers are targeting employees of US companies which use shopping portals and similar online payment systems. The final payload used in this phishing campaign is always the. JavaScript-based backdoor known as More.eggs, a malware strain designed to allow the attackers to control the compromised machines remotely and to. enable them to drop extra malware payloads on their victims’ computers. The URLs embedded within the body of the phishing emails or within their attachments point “to a landing page that spoofs a real. talent and staffing management company
Source: security