Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
Share Post: G+ Digg Delicious Reddit Facebook Twitter StumbleUpon

necurs new servhelper pushed botnet flawedgrace rat backdoor

New ServHelper Backdoor and FlawedGrace RAT Pushed by Necurs Botnet
Quote:Malware researchers discovered two new malware families distributed through phishing campaigns last year from the Necurs botnet: ServHelper backdoor with two variants and FlawedGrace remote access trojan (RAT).
The threat actor continues to target organizations in the financial and retail sectors, the researchers say, using Microsoft Word, Microsoft Publisher, and PDF files pull the malware on the victim computer host.

Necurs campaigns deliver ServHelper

A first salvo of malicious messages was shot on November 9, 2018. It was a small campaign with several thousand emails delivering Word and Publisher documents laced with hostile macros.

A larger campaign with tens of thousands of emails occurred six days later and carried messages with .DOC, .PUB, and .WIZ documents, all specific to the same Microsoft Office components mentioned above.

Possibly Related Threads...
Thread Author Replies Views Last Post
  DOJ moves to take down Joanap botnet operated by North Korean state hackers Bjyda 0 143 01-31-2019 , 01:26 PM
Last Post: Bjyda
  Anton Cherepanov from ESET won Pwnie Award for best backdoor baziroll 0 421 07-30-2017 , 12:27 AM
Last Post: baziroll
  Newly Discovered CowerSnail Backdoor Targets Windows Computers tregs_beales 0 495 07-26-2017 , 04:59 PM
Last Post: tregs_beales
  FalseGuide Malware in Play Store Infects 2M Users, Forces Phones to Join Botnet mrtrout 0 514 04-26-2017 , 02:57 AM
Last Post: mrtrout
  WhatsApp backdoor allows snooping on encrypted messages Mohammad 0 556 01-13-2017 , 05:25 PM
Last Post: Mohammad

Forum Jump:

Users browsing this thread: 1 Guest(s)