Cyber security researchers have discovered a powerful new strain of malware with a number of dangerous features and abilities.
Named Borat (after the protagonist of the popular movie Sacha Baron Cohen), the malware is a Remote Access Trojan (RAT), ransomware, and spyware rolled into one, which can also be used to launch Distributed Denial of Service (DDoS) and UAC Bypass. attacks
Researchers from cybersecurity firm Cyble managed to obtain a sample of the malware and upon closer inspection found that it can take control of the target's mouse and keyboard, access files and network points, and hide its presence on the Internet. terminal.
triple trouble
Among the wide range of features of Borat malware are keylogger, audio recorder, webcam recorder, reverse proxy, password stealer and Discord token stealer.
The researchers don't know if Borat is being sold online or just given away for free. Cyble says that it comes with a builder, different malware modules, and a server certificate.
Such malware is usually distributed on dubious websites, in torrent files disguised as patches and cracks, and on fake phishing sites promising freeware and other stuff.
The researchers described it as a "unique combination of RAT, spyware, and ransomware," making it a "triple threat" for any compromised device.
"With the ability to record audio and control the webcam and carry out traditional information-stealing behavior, Borat is clearly a threat to be reckoned with," the researchers concluded.
BleepingComputer attempted to find out who the masterminds behind Borat are and discovered that the payload executable was recently identified as AsyncRAT, suggesting that the authors likely based their work on this particular RAT.
To stay safe, security researchers suggest that everyone be vigilant when downloading software and only download content from trusted sources.
Via BleepingComputer