Home
Tech info
Technology
Science
Life
Application
Electric
Program
Mobile
Windows 10
Windows 11Detecting new malicious code capable of 'evading' most anti-virus software
Specifically, security experts have discovered a new JavaScript downloader that distributes 8 remote access (RAT) Trojans, keyloggers and information stealers. different. The special thing is that this new malicious code uses a number of techniques to be able to bypass the detection of most security tools, so it is very dangerous.
Detecting new malicious code capable of 'evading' most anti-virus software Picture 1
HP analyst Patrick Schlapfer said the new malware successfully infiltrated many of the victim's workstations because the anti-virus system detected only 11% of the malicious code.
RATs and keyloggers help hackers gain access to infected computers through 'backdoors'. They will then use the access to steal user account credentials, cryptocurrency wallets, etc.
When a user opens an email containing malicious code in JavaScript, a VBScript file is written and downloaded to the malware, before deleting itself.
Experts have detected at least three different RATDispenser variants in the past three months with a total of 155 newly discovered malware samples. This suggests that the malware may still be in development.
The researchers suggest that the author of the RATDispenser malware may be operating in the form of a malware business.
Jessica TannerYou should read it
- Fileless malware - Achilles heel of traditional antivirus software
- Discover a new kind of malicious code that can record the phone call to extort money
- Researchers create malware based on artificial intelligence
- 5 tips to help detect signs of malware
- The US government network is infected with malware by employees watching adult movies during the hour
- Malicious Code EvilGnome attacks Linux systems with many rare tricks
- 2022 could be the year of Linux malware
- Can a VPN Fight Malware?
- Threats and risks from malware on USB Flash
- 10 typical malware types
- The malware detection is extremely dangerous, unable to destroy even if the operating system is reinstalled and the hard drive is replaced
- Google 'purged' 24 applications downloaded nearly 500,000 times containing malicious malware
Maybe you are interested
This Simple Android App Proves Anything Can Contain Malware
BadBox Malware Is Picking Up Speed, Targeting Certain Android Devices
Warning of new dangerous malware attack campaign targeting Linux
Downloaded malware? Try these fixes before factory reset!
SteelFox Trojan: Malware Turns PCs Into Cryptocurrency Mining Zombies
Remcos Alert: Ingenious Excel Phishing Campaign Spreading Dangerous Fileless Malware
Security solution
What is Cobalt Strike? How do security researchers use Cobalt Strike?- Ransomware uses WinRAR to lock victim's data
- Detected a serious BIOS vulnerability, affecting many Intel processors
- Mysterious malware threatens millions of routers and IoT devices
- App Installer on Windows 10 was used to install BazarLoarder malware
- AMD patched a series of security holes in the graphics driver for Windows 10
What is Cobalt Strike? How do security researchers use Cobalt Strike?
Ransomware uses WinRAR to lock victim's data
Detected a serious BIOS vulnerability, affecting many Intel processors
Mysterious malware threatens millions of routers and IoT devices
App Installer on Windows 10 was used to install BazarLoarder malware
AMD patched a series of security holes in the graphics driver for Windows 10