Rookit Scranos links China und sucht Opfer in der ganzen Welt

Multifunctional rootkit operators extended field of their activity outside China and now attack users all over the world.

EINs say specialists of BitDefender Unternehmen, the highest number of victims is noted in Romania, France, India, Brazil and Indonesia.

Scranos combines functions of backdoor, infostealer and advertisement software and can use all Windows versions, including Windows 10.

Despite Scranos is on a stage on development, even now it possess a substantial threat.

Scranos
Illustration of how the dropper and rootkit operate.

It has module function and due to it can perform various tasks as extract cookie-files and account details in all browsers, steal payment data from users’ accounts on Facebook, Amazon and Airbnb; on behalf of a victim send requests on “adding friends” on Facebook; send fishing messages to users’ friends on Facebook; steal account details during Steam authorization; implement advertising software in Internet Explorer; install extensions for Chrome/Opera; subscribe victim on YouTube channels.

“This operation is constantly evolving, as demonstrated by the fact that its developers build in new functionalities rather than rely on external tools that may be detected as malicious. The attackers also started encrypting the dropper to disguise it”, – reported by researchers Bitdefender.

Malware is majorly spread though hacked software, so users that use to download and install such tools are at risk.

Quelle: www.bitdefender.com

Über Trojan Mörder

Tragen Sie Trojan Killer-Portable auf Ihrem Memory-Stick. Achten Sie darauf, dass Sie in der Lage sind, Ihr PC keine Cyber-Bedrohungen widerstehen zu helfen, wo immer Sie sind.

überprüfen Sie auch

MageCart auf der Heroku Cloud Platform

Die Forscher fanden mehrere MageCart Web Skimmer Auf Heroku Cloud Platform

Forscher an Malwarebytes berichteten über mehr MageCart Web-Skimmer auf der Heroku Cloud-Plattform zu finden, …

Android Spyware CallerSpy

CallerSpy Spyware Masken als Android-Chat-Anwendung

Trend Micro Experten entdeckt die Malware CallerSpy, die Masken als Android-Chat-Anwendung, und, …

Hinterlasse eine Antwort