Geeks for your information News Privacy & Security News v
Lokibot Uses Image Files to Hide Code for Unpacking Routine
Lokibot Uses Image Files to Hide Code for Unpacking Routine
silversurfer Offline
Staff Member
******
Posts: 3,885
Threads: 3,283
Thanks Received: 5,064 in 3,838 posts
Thanks Given: 6,200
Joined: 12 September 18
#1
Bug  07 August 19, 14:52 (This post was last modified: 07 August 19, 14:53 by silversurfer.)
Quote:The authors behind LokiBot info-stealer have turned to steganography to add a new layer of obfuscation, the researchers discovered in a recent variant of the malware.
 
LokiBot is currently under active development, with developers adding a bundle of features over the years. 
It can steal browser information from over 25 different products, check for remote administration tools (SSH, VNC, RDP), and find credentials for email and file transfer clients.
 
Researchers at Trend Micro discovered that new strains of LokiBot use image files to hide code needed for its unpacking routine.

Read more here: https://www.bleepingcomputer.com/news/se...g-routine/
[-] The following 2 users say Thank You to silversurfer for this post:
  • darktwilight, harlan4096
Find
Reply


Forum Jump:


Users browsing this thread: 1 Guest(s)
[-]
Welcome
You have to register before you can post on our site.

Username/Email:


Password:

[-]
Recent Posts
Free Download Manager 6.33.1.6648
Changes in 6.33.1....harlan4096 — 08:33
Brave 1.87.190 (Chromium 145.0.7632.109)
Release v1.87.190 ...harlan4096 — 08:32
LibreOffice 25.8.5
Berlin, 19 Februar...harlan4096 — 08:30
Google Chrome 145.0.7632.109/110
Google Chrome 145....harlan4096 — 08:29
Internet Download Manager 6.32 Build 9
Internet Download ...Kool — 00:41

[-]
Birthdays
Today's Birthdays
avatar (38)Michaelaburi
avatar (46)dpascoal
Upcoming Birthdays
avatar (46)dimaWeami
avatar (44)Baihu

[-]
Online Staff
There are no staff members currently online.

>