According to security company Heimdal, a new campaign spam appeared during the weekend, carrying the malware TeamSpy. The specific malware which can give them hackers full access to a computer through Teamviewer.
How does it work:
Malware comes as a file.zip in a emails from a fake address. The zip contains a file.exe which if you run it will infect your computer with TeamSpy with a malicious DLL file. The emails that contain the malware according to the company that discovered them had as subject "eFax message from" 1408581 **. "
All logs copied to a file. These include all available usernames and passwords. The file is immediately sent to a C&C server.
This attack can bypass two-factor authentication. At present its detection ratio malware is very low (15/58), which means that only 15 antivirus software are able to detect it.
This can be explained why it is the beginning of the attack. So it would be good to watch out for the emails you receive and not download files that do not look trustworthy.