📚 RAT Hosted on PasteBin Leads to BSOD
💡 Newskategorie: IT Security
🔗 Quelle: news.softpedia.com
Because malware authors never sleep, it is always entertaining to see what are the most recent tactics they're coming up with to distribute their payloads. Security researchers from Malwarebytes have stumbled on a malware campaign that uses some pretty out-of-the-ordinary tactics. The Malwarebytes team says they've discovered a tainted file called VMWare.exe, which appears to be a pirated or cracked version of the well-known VMWare virtualization software. Suspicious file fetches PasteBin script that installs njRAT Pieter Arntz, Malwarebytes malware researcher, says during the installation of this suspicious application, the installer would connect to PasteBin, a text sharing portal, access a page, and download a paste. He says this paste contained a Visual Basic script, which the installer would run on the victim's PC. The script would also connect to an online server, download and execute another EXE file called Tempwinlogon.exe. ...