An information-stealing Trojan program installed on both client PCs and servers. Stabuniq targeted mostly financial institutions and was found to steal data from institutions in the Eastern part of the US, mostly in the NY/Chicago areas.
The Stabuniq malware is distributed using a combination of spam emails and malicious websites that host Web exploit toolkits. Once installed, Stabuniq collects data from the infected machine and sends it to command-and-control (C&C) servers operated by the attackers.