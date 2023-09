Ua ʻike ʻo IBM X-Force i ka piʻi ʻana o ka hiki o DBatLoader malware samples i puʻunaue ʻia ma o nā leka uila. ʻO kēia hoʻomohala ʻana i kahi pilikia nui o ka maʻi mai nā ʻohana malware maʻamau e pili ana me ka hana DBatLoader. Mai ka hopena o Iune, ua ʻike ʻo X-Force ma kahi o ʻelua mau kaukani leka uila e hoʻohana ana i ka loader DBatLoader hou e hāʻawi i nā uku e like me Remcos, Warzone, Formbook, a me AgentTesla. Hāʻawi kēia mau hoʻolaha i nā Trojans (RATs) a me nā infostealers i pili pū me DBatLoader malware.

ʻO DBatLoader, a i ʻole ModiLoader, kahi ʻano malware i ʻike ʻia mai ka makahiki 2020. Hoʻohana ʻia ia e hoʻoiho a hoʻokō i nā uku hope loa i nā hoʻolaha malware commodity, me nā RATs a me nā infostealers e like me Remcos, Warzone, Formbook, a me AgentTesla. Hoʻohana pinepine ka poʻe Cybercriminals i nā leka uila spam maikaʻi e hoʻokau iā DBatLoader, a hoʻohana pinepine lākou i nā lawelawe kapuaʻi e hana a kiʻi hou i nā uku uku. Ma mua o kēia makahiki, ua kālele ʻo DBatLoader i ka hāʻawi ʻana iā Remcos i nā hui ma ʻEulopa Hikina a me Formbook a me Remcos i nā ʻoihana ma ʻEulopa.

Hoʻohana mau ʻia ʻo Remcos, kahi mea hana mamao a me ka polokalamu kiaʻi no nā kumu ʻino. Hāʻawi ia i ka ʻae ʻole i nā ʻōnaehana hana Windows. ʻO Warzone, i ʻike ʻia ʻo AveMaria, he trojan mamao hiki ke kūʻai ʻia ma ka pūnaewele warzone [.]ws mai ka makahiki 2018. ʻO Formbook a me AgentTesla nā mea ʻaihue ʻike kaulana i hiki ke loaʻa ma nā mākeke lalo.

I nā hoʻolaha hou i ʻike ʻia e X-Force, ua hoʻomaikaʻi nā mea hoʻoweliweli i kā lākou hana mua. Ua loaʻa iā lākou ka mana ma luna o nā ʻōnaehana leka uila, e ʻae ana i nā leka uila maikaʻi e hala i nā ala hōʻoia leka uila SPF, DKIM, a me DMARC. ʻO ka hapa nui o kēia mau hoʻolaha e hoʻohana iā OneDrive i ke kahua a kiʻi hou i nā uku uku. Hoʻohana kekahi mau hoʻolaha i ka hoʻoili[.]sh a i ʻole nā ​​kāʻei kapu hou. ʻOiai ʻo ka hapa nui o ka leka uila e pili ana i nā mea ʻōlelo Pelekania, ua ʻike pū ʻo X-Force i nā leka uila ma ka ʻōlelo Sepania a me Turkish.

Ke hoʻomau nei ʻo DBatLoader ma lalo o ka hoʻomohala ʻana, a ke hoʻomau nei nā mea hiki ke hoʻonui i kona pono ma ke ʻano he polokalamu hoʻopuka malware.

