Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
Share Post: Reddit Facebook
Under-Detected ODT Files Deliver Common Remote Access Trojans
#1
Quote:Security researchers noticed multiple cybercriminal operations using OpenDocument Text (ODT) files to distribute malware that is typically blocked by antivirus engines. The campaigns target English and Arabic-speaking users.
ODT files are archives that can hold text, images, and objects, such as XML-based files that can be opened by Microsoft Office and similar, open-source software (LibreOffice, OpenOffice).

Two RATs and an info-stealer

Some antivirus engines treat ODT files as standard archives and do not open the document as a Microsoft Office file, allowing malware to be downloaded on the target host.
In one of the campaigns targeting Microsoft Office users, the cybercriminals embedded an OLE (Object Linking and Embedding) in ODT documents to download the well-known remote access trojans (RATs).

https://www.bleepingcomputer.com/news/se...s-trojans/
Reply


Possibly Related Threads…
Thread Author Replies Views Last Post
  IObit our program files are detected as PUP by Malwarebytes mrtrout 1 3,535 08-07-2020 , 12:52 AM
Last Post: tarekma7
  CHAOS Framework - Generate Payloads (Persistence) and Remote Access PC using Kali Lin baziroll 0 2,599 08-14-2017 , 12:51 AM
Last Post: baziroll
  Godaddy Malware detected On My Website baziroll 0 1,726 07-23-2017 , 12:29 AM
Last Post: baziroll
  The Most Common Internet Scams! Watch Out! baziroll 0 1,466 05-19-2017 , 01:43 PM
Last Post: baziroll

Forum Jump:


Users browsing this thread: 1 Guest(s)