One Article Review
| Source |  SecurityWeek |
|---|---|
| Identifiant | 547897 |
| Date de publication | 2018-03-28 15:25:04 (vue: 2018-03-28 18:01:09) |
| Titre | Fileless Crypto-Mining Malware Discovered |
| Texte | Malicious crypto-miners have invaded the threat landscape over the past year, fueled by a massive increase in the value of crypto-currency. A recent attack discovered by security researchers from Minerva Lab used malware dubbed GhostMiner, which has adopted the most effective techniques used by other malware families, including fileless infection attacks. Focused on mining Monero crypto-currency, the new threat used PowerShell evasion frameworks – Out-CompressedDll and Invoke-ReflectivePEInjection – that employed fileless techniques to hide the malicious code. |
| Notes | |
| Envoyé | Oui |
| Condensat | active ads aggressive also analysed any are arghire arghire:fileless arguments async attackers attacks aware between blacklisted builder but campaign can columns com/js/plusone command commandline competitors connections contained correspondent createelement crypter crypto defenders discovered document emerges endpoints established even exe explanation exploit exploits extensionnew facebook fileless firefox force” found from function gangs getelementsbytagname ghostminer google goscanssh https://apis include industry infect insertbefore international ionut isolates itself kill killer killers” labs leverages likely links linux looking low machine machines malicious malware meant methods miner miners minerva mining modified more name new news note office other parentnode plenty potential powershell prevent previous process provide public purposes related: removing report researchers revenues rivalry running same sample scheduled script security securityweek serversjrat service services share similar sponsored src stay stopping succeed: such suggest t46 t47 tags: targeted targets tasks tcp techniques ten text/javascript these threadkit times toolset true; try tweet type undetectedmozilla use using var variety victims vulnerable “another “competitor “stop |
| Tags | |
| Stories | |
| Move | 
|
L'article ne semble pas avoir été repris aprés sa publication.
L'article ne semble pas avoir été repris sur un précédent.