Microsoft Spotted Astaroth Backdoor Trojan: FIleless Malware Attack

According to report, Microsoft researchers have recently spotted Astaroth Backdoor Trojan which is now back and using a living-off-the-land techniques to make it even harder for most the antimalware to identify the attacks. Thanks to Windows Defender ATP (well-known commercial antivirus Windows Defender for free) which was detected this risk during May & June 2019. Security researchers team was used specific algorithm to catch a form of fileless attacks in particular. Let’s take have a look at statement of Microsoft Defender ATP official report. “I was doing a standard review of telemetry when I noticed an anomaly from a detection algorithm designed to catch a specific fileless technique. Telemetry showed a sharp increase in the use of the Windows Management Instrumentation Command-line (WMIC) tool to run a script, indicating a fileless attack.” Fileless Astaroth malware spreads via malicious email messages with links to malicious .lnk file Microsoft researcher’s team found Read more