Download Certificate- Most Promising Partner | ECIO | Most Admired Brand | Most Trusted Company

Kaspersky discovers fileless malware inside Windows Event logs


By MYBRANDBOOK


Kaspersky discovers fileless malware inside Windows Event logs

Recently, Kaspersky published a detailed analysis of a complex attack involving a combination of various techniques and pieces of software and highlighted the use of Windows event logs as something completely new.

 

The Windows event log and Event Viewer are supposed to help users diagnose security issues and other problems in PCs. However, Kaspersky researchers encountered one hacker who used the event log itself against their target. The attacker inserted shellcode into the target's Windows event logs, leaving no files for antivirus to detect.

 

The hacking groups employed two types of Trojans for the last stage, gaining further access to the system. This was delivered through two different methods, both via HTTP network communications and by engaging the named pipes.

 

The HTTP network method saw the malicious file target the Windows system files, hiding a piece of malware by creating a duplicate of an existing file with “1.1” added to the string, which is assumed to be the malicious version of a file.

 

The other method is known as the Named-Based Pipes Trojan, which locates the Microsoft Help Data Services Module library within Windows OS files and then grabs an existing file to overwrite it with a malware version that can execute a string of commands. Once the malicious version is run, the victim’s device is scraped for architecture and Windows version information.

 

Denis Legezo, lead security researcher at Kaspersky said, “We witnessed a new targeted malware technique that grabbed our attention. For the attack, the actor kept and then executed an encrypted shellcode from Windows event logs. That’s an approach we’ve never seen before and highlights the importance of staying aware of threats that could otherwise catch you off guard. We believe it’s worth adding the event logs technique to MITRE Matrix’s Defense Evasion and Hide Artifacts section. The usage of several commercial pentesting suites is also not the kind of thing you see every day.”
 BREAKING NEWS  BREAKING NEWS
Cisco announces AI-native secure Wi-Fi 7 for future-ready employe

Cisco announces AI-native secure Wi-Fi 7 for future-ready employe...

Announcing a major leap in wireless technology, Cisco has launched its Wi...

The BSE benchmark Sensex tumbled over 800 points, leaving investo

The BSE benchmark Sensex tumbled over 800 points, leaving investo...

The BSE benchmark Sensex recently experienced a significant drop, tumblin...

North Korean GPS Interference Disrupts Air Traffic

North Korean GPS Interference Disrupts Air Traffic...

South Korea's military has publicly accused North Korea of disrupting GP...

US ordered TSMC to halt chip shipments to China

US ordered TSMC to halt chip shipments to China...

TSMC has had regular discussions with the government on export control issu...

 TECHNO TRENDS  Placeholder image
Nazara and ONDC set to transform in-game monetization with ‘

Nazara and ONDC set to transform in-game monetization with ‘

Nazara Technologies has teamed up with the Open Network for Digital Comme...

Jio Platforms and NICSI to offer cloud services to government

Jio Platforms and NICSI to offer cloud services to government

In a collaborative initiative, the National Informatics Centre Services In...

BSNL awards ₹5,000 Cr Project to RVNL-Led Consortium

BSNL awards ₹5,000 Cr Project to RVNL-Led Consortium

A syndicate led by Rail Vikas Nigam Limited (abbreviated as RVNL), along wi...

Pinterest tracks users without consent, alleges complaint

Pinterest tracks users without consent, alleges complaint

A recent complaint alleges that Pinterest, the popular image-sharing platf...

 E-Magazine 
 TECHNOTAINMENT  Placeholder image
Eloelo teams up with Elvish Yadav for India's biggest digital

Eloelo teams up with Elvish Yadav for India's biggest digital

Netflix adds 'Moments' feature for saving, sharing scenes from

Netflix adds 'Moments' feature for saving, sharing scenes from

Netflix has introduced a new “Moments” feature on its mobile app, whic
Jacqueline Fernandez come together with YouTuber Mr. Beast for

Jacqueline Fernandez come together with YouTuber Mr. Beast for

Jacqueline Fernandez has partnered with American YouTuber Mr. Beast to b
 MOVERS & SHAKERS  Placeholder image
Kamal Nath quits SIFY Technologies

Kamal Nath quits SIFY Technologies

Visa elevates Rishi Chhabra as new Country Manager for India

Visa elevates Rishi Chhabra as new Country Manager for India

Rishi holds a Master’s in Industrial Engineering from The Ohio State Univ
Genesys welcomes Albert Nel as Senior VP and Regional Sales Le

Genesys welcomes Albert Nel as Senior VP and Regional Sales Le

Genesys continues to deepen its investment in the APAC region. Earlier this
 OPEN YOUR EYES  Placeholder image

Ragnar Locker Hides in Virtual Machine to Escape from antivirus software
A question arises on how would be the future of the workplace?
Rising Uncertainty On The Start-ups At The Verge Of Collapse
Digital banking brings revolution during COVID-19
Newer Technology Solutions To Ensure Business Continuity During COVID-19
 INTERVIEWS  Placeholder image
Bolstering its commitment to help build a truly self-reliant B

Bolstering its commitment to help build a truly self-reliant B

In India, 88% of Indian business leaders are planning to inves

In India, 88% of Indian business leaders are planning to inves

As we move through 2024, it has become increasingly clear that AI is not ju
Cisco building a trusted and resilient future for the nation

Cisco building a trusted and resilient future for the nation

Security is foundational to everything Cisco does and customers insist on e
 HOT PICK  Placeholder image
BOULT unveils AmpVault V10 & V20 powerbanks: Fast charging, sa

BOULT unveils AmpVault V10 & V20 powerbanks: Fast charging, sa

SonicWall Launches TZ80: A Powerful Solution for Remote Office

SonicWall Launches TZ80: A Powerful Solution for Remote Office

SonicWall announced today the launch of the TZ80, a groundbreaking securit
Gigabyte X3D Turbo: A Gaming Revolution

Gigabyte X3D Turbo: A Gaming Revolution

GIGABYTE X3D Turbo Mode is a cutting-edge feature that unifies cores distr
 MAKE IN INDIA BRANDS   Placeholder image
BPE INDIA PVT. LTD.

BPE INDIA PVT. LTD.


BHARAT ELECTRONICS LTD.

BHARAT ELECTRONICS LTD.


BEETEL TELETECH LTD.

BEETEL TELETECH LTD.


RELIANCE JIO INFOCOMM LTD.

RELIANCE JIO INFOCOMM LTD.


 EMINENT CIO'S OF INDIA  EMINENT CIO'S OF INDIA

HARNESSING THE POWER OF BIG DATA TO GAIN VALUABLE INSIGHTS

A Technology certainly drives innovation and busin...

STRATEGIC FRAMEWORK FOR SUSTAINABLE BUSINESS EXPANSION IS PATHWAY TO PROSPERITY

Accelerate the adoption of AI and machine learning...

AI TO IMPROVE INSIGHTS THROUGH AUGMENTED ANALYTICS, WHILE EDGE COMPUTING TO ALLOW REAL-TIME PROCESSING

For the fiscal year 2024-25, our organization has ...

 ICONS OF INDIA  Placeholder image

Icons Of India : MUKESH D. AMBANI

Mukesh Dhirubhai Ambani is an Indian businessman and the chairman and ...

Icons Of India : Dr. Arvind Gupta

Arvind Gupta is the Head and Co-Founder of the Digital India Foundatio...

ICONS OF INDIA : RAJESH NAMBIAR

Rajesh leads the company’s India associates and enhances relationshi...

 PARTNER SPEAKERS  EMINENT CIO'S OF INDIA

"Keep IT Simple" with dedication to Quality

BM Infotrade prioritizes its motto of “Keep IT Simple”, with this it stand...

Innovation, Technology and Partnerships Continue To Be The Cornerstone Of Growth

IT distribution is undergoing a significant transformation. As technology evol...

Innovation and Adaptability help to stay relevant

Utilizing data analytics tools, companies can track various metrics such as we...

 PSU  Placeholder image

NIC - National Informatics Centre  

NIC serves as the primary IT solutions provider for the government of ...

C-DAC - Centre for Development of Advanced Computing  

C-DAC is uniquely positioned in the field of advanced computing...

ECIL - Electronics Corporation of India Limited

ECIL is distinguished by its diverse technological capabilities and it...

 VIDEOS  Placeholder image

 Top 25 Brands  Solution partners

Most Trusted Brands 2024 : Oracle Corporation 

Oracle focuses on secure enterprise software, and cloud solutions to build str...

Most Trusted Brands 2024: Apple India Pvt. Ltd.

five decades after its founding, Apple has redefined modern computing, emphasi...

Most Trusted Brands 2024: WIPRO LTD.

Wipro Ltd. is a leading information technology, consulting, and business proce...

 Global Indian industry   Value-Added Distribution

Indian Tech Talent Excelling The Tech World - Vinod Dham, Founder & Executive Managing Partner, IndoUS Venture Partners

Vinod Dham, known as the “Father of the Pentium Chip,” has left an...

Indian Tech Talent Excelling The Tech World - Dheeraj Pandey, CEO, DevRev

Dheeraj Pandey, Co-founder and CEO at DevRev , has a remarkable journe...

Indian Tech Talent Excelling The Tech World - Anirudh Devgan , President, Cadence Design

Anirudh Devgan, the Global President and CEO of Cadence Design Systems...

 STARNITE AWARDS 2024  
 ITFORUM 2024  
   
 CMO of the Year   Placeholder image
 WOMEN LEADERSHIP  Placeholder image
 IMAGE GALLERY   Placeholder image
 TRENDS IN TECHNOLOGY  Placeholder image
MORE VIDEOS  Placeholder image
Brand Book
Brand Book
Brand Book
Brand Book
 ADVERTISEMENTS  Placeholder image
Brandbook Brandbook
 TECHNOLOGY DISRUPTION Placeholder image

Red Hat and Tech Mahindra help telcos with greater hybrid cloud flexibility

Red Hat and Tech Mahindra help telcos with greater hybrid cloud flexibility

Digital transformation is the Frontier for the wellbeing of the organization

Digital transformation is the Frontier for the wellbeing of the organization

Sonu Sood initiative, COVREG aims to create the world’s biggest volunteer program for COVID-19 vaccination

Sonu Sood initiative, COVREG aims to create the world’s biggest volunteer program for COVID-19 vaccination

The Next Wave of Surveillance Technology

The Next Wave of Surveillance Technology

 UNICORNS REVOLUTIONISING Placeholder image

CoinSwitch

CoinSwitch

Eruditus Executive Education

Eruditus Executive Education

Mindtickle Inc.

Mindtickle Inc.

Lenskart Solutions Private Limited

Lenskart Solutions Private Limited


Copyright www.mybrandbook.co.in @1999-2024 - All rights reserved.
Reproduction in whole or in part in any form or medium without express written permission of Kalinga Digital Media Pvt. Ltd. is prohibited.
Other Initiatives : www.varindia.com | www.spoindia.org
ADMIRED BRANDS

AFTER MARKET SERVICES

CATEGORIES

DISTRIBUTORS & VADs
GOVERNMENT BODIES

INDUSTRY BODIES

MAKE IN INDIA

CONTACT US

SUBSCRIBE NOW