RAM Malware

Fileless is a new malware that is injected into the hard disk without a trace and is installed in RAM. Kaspersky Lab has been alerted that his new form of input difficult to detect. This malware has appeared on Russian news portals ria.ru and gazeta.ru, although at this late hour it may be already on any site. The attack method is the so-called Drive-by-Download or massive infection through web sites that leverage these vulnerabilities to inject malicious code between your original code. Like a normal infection, the malware attempts to seize all privileges on the machines infected with the final objective mainly get online banking passwords. In this case, it injects a dll directly encrypted in memory in the javaw.exe process. Obviously it is downloaded in the reboot or shutdown of the computer but it is late and that leave installed the Trojan Trojan-Spy.Win32.Lurk connected to botnets. This type of malware based on RAM memory is extremely difficult to detect and affects all systems operating. In addition to a security solution best thing is prevention using updated software that resolves the vulnerabilities that used, especially browsers and plug-ins installed. Audea security of information Department of Marketing and communication source: desarrolloweb.

Continue reading