operadores de rootkit multifuncionales extendieron el campo de su actividad fuera de China y ahora atacan a los usuarios de todo el mundo.
UNAs say specialists of BitDefender empresa, el mayor número de víctimas se observa en Rumania, Francia, India, Brasil e Indonesia.Scranos combina las funciones de puerta trasera, Infostealer y publicidad de software y se puede utilizar todas las versiones de Windows, incluyendo Windows 10.
Despite Scranos is on a stage on development, even now it possess a substantial threat.
Illustration of how the dropper and rootkit operate.
It has module function and due to it can perform various tasks as extract cookie-files and account details in all browsers, steal payment data from users’ accounts on Facebook, Amazon and Airbnb; on behalf of a victim send requests on “adding friends” on Facebook; send fishing messages to users’ friends on Facebook; steal account details during Steam authorization; implement advertising software in Internet Explorer; install extensions for Chrome/Opera; subscribe victim on YouTube channels.
“This operation is constantly evolving, as demonstrated by the fact that its developers build in new functionalities rather than rely on external tools that may be detected as malicious. The attackers also started encrypting the dropper to disguise it”, – reported by researchers Bitdefender.
Malware is majorly spread though hacked software, so users that use to download and install such tools are at risk.
Fuente: www.bitdefender.com
