Hackers have found a new way to deliver the Zeus malware, a long time piece of software used to steal online banking info.

Unfortunately, the various malware scanners at Virus Total are unable to detect it. It is usually delivered in spam messages that are fake emails from companies such as payment processor ADP, the Better Business Bureau and the British tax authority HMRC.

The messages contain a zip file that when opened contain a small application called UPATRE. That file contains an .exc file that decrypts and produces the GameOver Zeus, a variant of the notorious Zeus malware.

Scanners are failing because the .enc file isn't technically malware. It is just when the file is decrypted that it becomes malware.

It is being advised that network administrators check their system for any downloaded .enc files.