Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
Share Post: Reddit Facebook
How to Avoid the New Astaroth Malware That's Hitting Windows
#1
Quote: The notorious Windows malware Astaroth (aptly named after a demon baron of Hell found in occult cosmology) is back at it after several months of inactivity. 

Microsoft exposed its tactics last year, but the annoying malware is even harder to catch this time around—thanks to the clever methods it uses to conceal itself among seemingly normal files.

Astaroth’s new tactics include using Alternate Data Stream (ADS) to slip malicious hardware into a downloading file without your browser, operating system, or antimalware software ever noticing. 

Astaroth then uses legitimate Windows tools—such as ExtExport.exe, NirSoft MailPassView, BITSAdmin, and others—to execute its attacks.

It can use these tools to steal your email login credentials, send system information, and open your PC up to other forms of attack that can be extremely dangerous, but since these are legit tools, it will be hard—potentially impossible—for normal anti-virus software to block them.


Continue reading here:
https://lifehacker.com/how-to-avoid-the-...1842509944
Reply


Possibly Related Threads…
Thread Author Replies Views Last Post
  Lazarus hackers use Windows Update to deploy malware Mohammad.Poorya 0 848 01-28-2022 , 05:33 AM
Last Post: Mohammad.Poorya
  New malware DarkWatchman uses Windows Registry to evade detection mrtrout 0 1,083 12-25-2021 , 12:23 AM
Last Post: mrtrout
  Malware authors take advantage of the rush to try Windows 11 mrtrout 0 728 08-16-2021 , 09:11 PM
Last Post: mrtrout
  Password-Stealing Windows Malware has been Discovered mrtrout 0 748 07-24-2021 , 02:32 AM
Last Post: mrtrout
  Metamorfo Banking Trojan Abuses AutoHotKey to Avoid Detection Bjyda 0 1,382 03-13-2021 , 12:03 AM
Last Post: Bjyda

Forum Jump:


Users browsing this thread: 1 Guest(s)