Last week Proofpoint revealed a new malware targeting the financial sector called Marap. Marap is a malicious software downloader that, once successfully installed, can then download other malicious modules from C&C servers. So far it has only been observed downloading a system fingerprint module, which collects hacked system information. Researchers believe this is in preparation for a later attack.
Marap written in C language is a malware Downloader that can download and install various modules. At present, the only module is the system fingerprint module. Collect system user name, domain name, host name, IP address, language, country, Outlook. Ost file list, Windows version and antivirus software used, and send them back to the hacker controlled C&C server.
The researchers point out that Marap’s modular nature allows hackers to add new features in the future, as companies become more defensive and hackers become more careful and sophisticated in their attacks, and that the spread of ransomware has dropped sharply this year, with financial trojans, downloaders and other malware taking up the gap. Increased opportunities for hackers to stay on corporate devices and networks.
Article from: Libo lottery mobile phone home http://jumbotex.com.tw/