Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
Share Post: Reddit Facebook

detected odt remote deliver files access common trojans

Mohammad.PooryaUnder-Detected ODT Files Deliver Common Remote Access Trojans
Quote:Security researchers noticed multiple cybercriminal operations using OpenDocument Text (ODT) files to distribute malware that is typically blocked by antivirus engines. The campaigns target English and Arabic-speaking users.
ODT files are archives that can hold text, images, and objects, such as XML-based files that can be opened by Microsoft Office and similar, open-source software (LibreOffice, OpenOffice).

Two RATs and an info-stealer

Some antivirus engines treat ODT files as standard archives and do not open the document as a Microsoft Office file, allowing malware to be downloaded on the target host.
In one of the campaigns targeting Microsoft Office users, the cybercriminals embedded an OLE (Object Linking and Embedding) in ODT documents to download the well-known remote access trojans (RATs).

Possibly Related Threads…
Thread Author Replies Views Last Post
  CHAOS Framework - Generate Payloads (Persistence) and Remote Access PC using Kali Lin baziroll 0 952 08-14-2017 , 12:51 AM
Last Post: baziroll
  Godaddy Malware detected On My Website baziroll 0 626 07-23-2017 , 12:29 AM
Last Post: baziroll
  The Most Common Internet Scams! Watch Out! baziroll 0 520 05-19-2017 , 01:43 PM
Last Post: baziroll

Forum Jump:

Users browsing this thread: 1 Guest(s)