Picture of theregister.co.uk

Check Point July 2019 the most widespread malware in Greece

Check Point Research, the research division of Check Point® Software Technologies Ltd., released the most widespread malware in Greece for 2019 in July.

Picture of theregister.co.uk

agent Tesla – AgentTesla is a sophisticated RAT that acts as a keylogger and password stealing software infecting computers since 2014. AgentTesla has the ability to monitor and collect the victim's keyboard entries and system clipboard, take screenshots and removes credentials from software installed on the victim's machine (including , Mozilla Firefox and the Microsoft Outlook email client). AgentTesla is sold as a legitimate RAT with interested parties paying $15 – $69 for a single user license.

Lokibot - Lokibot is spying software that is mainly spread through phishing emails and is used to spy on data such as email credentials as well as passwords on electronic crypto wallets and FTP servers.

NanoCore – NanoCore is one remote access, which was first noticed in 2013 and targets Windows operating system users. All its versions include features like screen recording, cryptocurrency mining, remote control, etc.

Jsecoin – JavaScript mining software that can be embedded into websites. With JSEcoin, you can run the mining software directly on in exchange for an ad-free browsing experience, game coins and other incentives.

AZORult – AZORult is a trojan that collects and removes data from the infected system. Once it installed on a system (usually delivered by an exploit kit like RIG), it can send stored passwords, local files, crypto-wallets and computer profile information to a remote command & control server.

XMRig - XMRig is an open source CPU mining software used for the Monero cryptocurrency production process and was first released in May 2017.

Trickbot - Trickbot is a variant of Dyre that appeared in October 2016. Since then, it has primarily targeted banking users in Australia and the United Kingdom and has recently started appearing in India, Singapore and Malaysia.

Emotet – Sophisticated self-replicating modular trojan. Emotet once functioned as a Trojan horse to intercept bank account information and has recently been used to distribute other malware or in malware campaigns. It uses many methods and evasion techniques to stay in the system and avoid it . In addition, it can be spread through unsolicited phishing emails containing malicious attachments or links .

FormBook – FormBook is an InfoStealer that targets the Windows system and was first detected in 2016. It is advertised on hacking forums as a tool that has strong evasion techniques and relatively low prices. FormBook collects credentials from various web browsers and screenshots, monitors and records keystrokes, and can download and execute files according to C & C instructions given to it.

Dorkbot – An IRC-based worm designed to allow its operator to remotely execute code, as well as download additional malware to the infected system, with the primary purpose of intercepting sensitive information and carrying out attacks of services.

Family of malware

Global impact

Effect Greece

agent Tesla

4.74%

15.61%

Lokibot

3.01%

15.61%

Nanocore

5.04%

13.50%

Jsecoin

6.40%

12.66%

AZORult

1.29%

12.24%

XMRig

7.62%

8.86%

Trickbot

4.60%

6.75%

Emotet

5.30%

6.33%

Formbook

3.61%

5.91%

Dorkbot

5.77%

5.06%

The World Threat Impact Directory and Check Point's ThreatCloud Map are based on Check Point's ThreatCloud intelligence, the largest anti-cyber crime network, which provides data on threats and trends in attacks, utilizing a global network threat detectors.

The ThreatCloud database includes more than 250 million addresses analyzed to detect bot, more than 11 million signatures of malware and more than 5,5 millions of infected sites, while recognizing millions of types of malware every day.

Check Point's Threat Prevention Resources are available on the site:
http://www.checkpoint.com/threat-prevention-resources/index.html

______________________

iGuRu.gr The Best Technology Site in Greecefgns

every post, directly to your

Join the 2.100 registrants.

Written by newsbot

Although the press releases will be from very select to rarely, I said to go ... because sometimes the authors are hiding.

Leave a reply

Your email address is not published. Required fields are mentioned with *

Your message will not be published if:
1. Contains insulting, defamatory, racist, offensive or inappropriate comments.
2. Causes harm to minors.
3. It interferes with the privacy and individual and social rights of other users.
4. Advertises products or services or websites.
5. Contains personal information (address, phone, etc.).