The publications are suspended, except for particular events, from 1 to 21 August. In the meantime, we are preparing some news for the second half of the year.
ASEC: CryptBot is being distributed via phishing sites. The info-stealing malware is disguised as a utility program, and the infection process changes continually
CryptBot is being distributed via phishing sites. It has been discovered by ASEC cybersecurity experts. The info-stealing malware is disguised as a utility program, and the infection process has been changing continually. The malicious code is downloaded in the zip format. Within the compressed file are another zip file that contains the info-leaking malware and a txt file that contains the unzip password. When the password is entered and the file unzipped, a portable executable named Mainsetupv1.0.exe that is archived with 7zip is revealed, and this is the actual malware.