| Home : April 07 2013 Computer News : Sneaky malware hides behind mouse movement, experts say |
|
Sneaky malware hides behind mouse movement, experts say |
April 07, 2013
Researchers from security vendor FireEye have uncovered a new advanced persistent threat (APT) that uses multiple detection evasion techniques, including the monitoring of mouse clicks, to determine active human interaction with the infected computer.
Called Trojan.APT.BaneChant, the malware is distributed via a Word document rigged with an exploit sent during targeted email attacks. The name of the document translates to "Islamic Jihad.doc."
"We suspect that this weaponized document was used to target the governments of Middle East and Central Asia," FireEye researcher Chong Rong Hwa said Monday in a blog post.
Multistage attack
The attack works in multiple stages. The malicious document downloads and executes a component that attempts to determine if the operating environment is a virtualized one, like an antivirus sandbox or an automated malware analysis system, by waiting to see if there's any mouse activity before initiating the second attack stage.
To read this article in full or to leave a comment, please click here
Link: http://www.pcworld.com/article/2033374/sneaky-malware-hides-behind-mouse-movement-experts-say.html#tk.rss_all
|
|
|
|
|
