When New Malware Appears in the Wild, Security Researchers Use Tools and Software to Conduct an Analysis of it, to Learn More about How it Works but, a New Piece of Malware has Made the Researchers' Job a Living Hell by Self-Destructing When it Detects the Analysis Software.
Security Researchers at Cisco Have Published New Research on a Malware Named, 'Rombertik', which will Go Out of its Way to Avoid Getting Analyzed by Deleting Essential Data in the Windows System File Called, the 'Master Boot Record' (MBR) Sending the Computer into an Endless Reboot Loop.
The Malware also Attempts to Fool the Researchers' Sandboxing Tools by Writing a Random Byte of Data to the System's Memory over 960 Million Times.
Security Expert, Graham Cluley Said, Destructive Malware like 'Rombertik' is Quite Rare, "because malware these days doesn't want to draw attention to itself, as that works against its typical goal - to lie in wait, stealing information for a long time". Once on a Victims' Computer, 'Rombertik' Steals Login Information and Other Personal Data Entered into any Website "in an indiscriminate manner" before Sending the Data to the Attacker.
Info Source:
http://blogs.cisco.com/security/talos/rombertik
_Robot_Glove_Pics_1.jpg)
0 comentários:
Enviar um comentário