Discord Server Red Security Twitter Donation to Red Security Red Security Youtube Channel Red Security Tumblr Profile
Login or Register to Hide ads and Accessing all features on the forum
Navigation:   Red Security General News News Hackers Deliver LimeRAT Malware Using Password Protected Excel Spreadsheet’s

News 

Hackers Deliver LimeRAT Malware Using Password Protected Excel Spreadsheet’s

0 Replies, 1683 Views

Mr.Kurd

   04-01-2020, 11:17 AM
::1 Try me
Administrators
#1
Exclamation 
In The Name OF Allah
Al-Salam Alekum

[Image: limerat-administration-panel.jpg]

Be careful with opining all those files your getting and touching online, always use Sandboxi...

Quote:The Microsoft Office is one of the most popular tools, it’s popularity was abused by cybercriminals to deliver malware.


With this current campaign attacker used Excel file with password-protected, to open the file victims should enter the password and it is included in the social engineered email.

To decrypt the password-protected file victims need to enter the password “VelvetSweatshop“, once decrypted it onboards the malicious macros embedded.

The final payload is the LimeRAT malware, a malicious remote access trojan that gives the attacker complete access to the victim’s machine.

“In this specific attack, the cybercriminals also used a blend of other techniques in an attempt to fool anti-malware systems by encrypting the content of the spreadsheet hence hiding the exploit and payload,” researchers told.


The Source
Wa Salam Alekum
Rs
* Thankful to Allah *
Kurdy

Possibly Related Threads…
Thread Author Replies Views Last Post
Star News Top tip, everyone: Chinese hackers are hitting these 25 vulns, so make sure you patc News 0 1,923 10-21-2020, 11:27 AM
Last Post: News
Star News US Warns: Hackers Chaining Zerologon, Other Vulnerabilities News 0 1,969 10-11-2020, 01:15 PM
Last Post: News
Star News Top anti-virus, anti-malware products contain security flaws News 0 2,022 10-08-2020, 01:09 AM
Last Post: News
Exclamation News Windows SMB Protocol Bug Let Hackers Leak Kernel Memory & Execute a Code Remotely Mr.Kurd 0 1,737 06-12-2020, 08:24 AM
Last Post: Mr.Kurd
Exclamation News $100,000 Bounty Apple Zero-day Bug in “Sign in with Apple” Let Hackers Take Takeover Mr.Kurd 0 1,785 06-01-2020, 07:42 AM
Last Post: Mr.Kurd
Shocked News Dark_nexus botnet outstrips other malware with new, potent features Mr.Kurd 0 1,826 04-08-2020, 08:52 AM
Last Post: Mr.Kurd
Star News Hackers Are Bundling Cryptominer With a Seemingly Legit Zoom Installer on Unofficial Mr.Kurd 0 2,001 04-08-2020, 08:43 AM
Last Post: Mr.Kurd
Question News Windows Running MS-SQL Servers Under Attack!! Hackers Installing 10 Secret Backdoors Mr.Kurd 0 1,585 04-02-2020, 08:38 AM
Last Post: Mr.Kurd
Sad News Critical RCE Bug in WordPress Plugin Let Hackers Gain Admin Access on 200,000 Website Mr.Kurd 0 1,549 04-01-2020, 11:19 AM
Last Post: Mr.Kurd
Shocked News Hackers Using Zoom’s Popularity in Coronavirus Outbreak to Infect Computers Mr.Kurd 0 1,733 03-31-2020, 07:36 AM
Last Post: Mr.Kurd



Users browsing this thread: 1 Guest(s)