Detecting new malicious code capable of 'evading' most anti-virus software
Cybersecurity experts at HP company (USA) have discovered a new malware that is able to evade most anti-virus software. The new malicious code is named RATDispenser.
Specifically, security experts have discovered a new JavaScript downloader that distributes 8 remote access (RAT) Trojans, keyloggers and information stealers. different. The special thing is that this new malicious code uses a number of techniques to be able to bypass the detection of most security tools, so it is very dangerous.
HP analyst Patrick Schlapfer said the new malware successfully infiltrated many of the victim's workstations because the anti-virus system detected only 11% of the malicious code.
RATs and keyloggers help hackers gain access to infected computers through 'backdoors'. They will then use the access to steal user account credentials, cryptocurrency wallets, etc.
When a user opens an email containing malicious code in JavaScript, a VBScript file is written and downloaded to the malware, before deleting itself.
Experts have detected at least three different RATDispenser variants in the past three months with a total of 155 newly discovered malware samples. This suggests that the malware may still be in development.
The researchers suggest that the author of the RATDispenser malware may be operating in the form of a malware business.
You should read it
- Fileless malware - Achilles heel of traditional antivirus software
- Discover a new kind of malicious code that can record the phone call to extort money
- Researchers create malware based on artificial intelligence
- 5 tips to help detect signs of malware
- The US government network is infected with malware by employees watching adult movies during the hour
- Malicious Code EvilGnome attacks Linux systems with many rare tricks
- 2022 could be the year of Linux malware
- Can a VPN Fight Malware?
- Threats and risks from malware on USB Flash
- 10 typical malware types
- The malware detection is extremely dangerous, unable to destroy even if the operating system is reinstalled and the hard drive is replaced
- Google 'purged' 24 applications downloaded nearly 500,000 times containing malicious malware
Maybe you are interested
Enable or disable Secure Boot via the ASUS UEFI BIOS utility How to temporarily lock the computer when entering the wrong password many times How to Add a Password to a .Bat File How to use ASCII characters to create strong passwords How to prevent DDoS attack with Nginx Techniques to exploit buffer overflows: Organize memory, stack, call functions, shellcode