Home
Tech info
Technology
Science
Life
Application
Electric
Program
Mobile
Windows 10
Windows 11Detecting new malicious code capable of 'evading' most anti-virus software
Specifically, security experts have discovered a new JavaScript downloader that distributes 8 remote access (RAT) Trojans, keyloggers and information stealers. different. The special thing is that this new malicious code uses a number of techniques to be able to bypass the detection of most security tools, so it is very dangerous.
HP analyst Patrick Schlapfer said the new malware successfully infiltrated many of the victim's workstations because the anti-virus system detected only 11% of the malicious code.
RATs and keyloggers help hackers gain access to infected computers through 'backdoors'. They will then use the access to steal user account credentials, cryptocurrency wallets, etc.
When a user opens an email containing malicious code in JavaScript, a VBScript file is written and downloaded to the malware, before deleting itself.
Experts have detected at least three different RATDispenser variants in the past three months with a total of 155 newly discovered malware samples. This suggests that the malware may still be in development.
The researchers suggest that the author of the RATDispenser malware may be operating in the form of a malware business.
Jessica TannerYou should read it
- Researchers create malware based on artificial intelligence
- 5 tips to help detect signs of malware
- The US government network is infected with malware by employees watching adult movies during the hour
- Malicious Code EvilGnome attacks Linux systems with many rare tricks
- 2022 could be the year of Linux malware
- Can a VPN Fight Malware?
- Threats and risks from malware on USB Flash
- 10 typical malware types
May be interested
- Funny caption of hackers spreading WannaCry malicious code
the hacker who spreads the most dangerous virus in 2017 also tries to make a joke in his ransom notice with a joke. - Virus appears to extort userssecurity firm sunbelt software distribution says it has discovered a very dangerous new 'kidnapping' malware that is capable of 'kidnapping' even pc. unlike other types of malicious code 'kidnapping extortion' previously only
- Malware Judy attacked more than 36.5 million Android phonesmalicious code judy now attacks 36.5 million android users through dozens of malicious applications and games with the judy brand.
- Warning: a new variant of the virus that fills virtual money via Facebook Messenger will appear every 10 minutessecurity experts recommend users need to be more careful because every 10 minutes, a new variant of the virtual money digging virus appears on facebook messenger.
- Find bug in Emotet malware, prevent it from spreading for 6 monthsaccording to researcher james quinn of the security firm binary defense, like other software, malicious code also has vulnerabilities, error codes. hackers can exploit software vulnerabilities to cause harm, security experts can also decompile the source code of malicious code to find the vulnerability to exploit and defeat the malicious code.
- Most Android anti-virus software cannot detect malicious APK filesapk file containing malicious code is a method that hackers often use to attack android users. unlike ios, android users can download and install apps from third-party app stores or download the app's apk file and install it themselves.
- Thousands of images on Google are infected with malicious codeaccording to the sans security research center, some images on google have been infected by malicious code, which leads users to websites that sell fake antivirus software or make users believe they have to download a program. certain (is a hacker's fake product) to fight viruses.
- Detecting malicious code 'super dangerous'security researchers have discovered a very malicious type of malicious code that has infected and stole user information on millions of pcs.
- Hackers take advantage of the panic in the Corona virus epidemic to spread malware on the internetthe acute coronary pneumonia outbreak due to the new strain of corona virus - ncov-2019 (wuhan flu) is one of the world's top news.
- Why shouldn't there be more than one antivirus on a Windows PC?in a world of increasing digital threats, you should protect your computer as aggressively as possible. and you might think that installing two antivirus programs would give you double protection.
Security solution
- What is Cobalt Strike? How do security researchers use Cobalt Strike?
- Ransomware uses WinRAR to lock victim's data
- Detected a serious BIOS vulnerability, affecting many Intel processors
- Mysterious malware threatens millions of routers and IoT devices
- App Installer on Windows 10 was used to install BazarLoarder malware
- AMD patched a series of security holes in the graphics driver for Windows 10
What is Cobalt Strike? How do security researchers use Cobalt Strike?
Ransomware uses WinRAR to lock victim's data
Detected a serious BIOS vulnerability, affecting many Intel processors
Mysterious malware threatens millions of routers and IoT devices
App Installer on Windows 10 was used to install BazarLoarder malware
AMD patched a series of security holes in the graphics driver for Windows 10