Taking advantage of the dissemination of news about the Boeing 737 Max 8 accidents, a new spam campaign is being carried out that distributes malware via email.
Those affected receive an email with a subject such as: "Fwd: Airlines plane crash Boeing 737 Max 8". The author says he is a private analyst who has found a document on the Dark Web where they are collected failures in other commercial aircraft and a list of other airlines affected. He encourages you to download an attachment with that information. The attachment is a .jar file containing malware.
Specialists from 360 Threat Intelligence Center have analyzed the file and discovered that if a user runs it, H-Worm Rat (a remote access tool) and the Adwin Trojan, which steals information, will be installed.