Advertisement
Top
image credit: Adobe Stock

New SolarMarker variant upgrades evasion abilities to avoid detection

April 19, 2022

Via: Security Affairs
Category:

Cybersecurity researchers from Palo Alto Networks disclosed a new version of the SolarMarker malware that implements new features to avoid detection.

SolarMarker (aka Jupyter, Polazert, and Yellow Cockatoo) is a fileless .NET RAT that implements backdoor capabilities and allows operators to steal credentials from web browsers, it gains persistence by adding itself to the Startup folder and modifying shortcuts on the victims’ desktop.

The RAT is also used to deliver other malicious payloads on the infected devices.

Read More on Security Affairs

RELATED PUBLICATIONS

North Korean Hackers Hijack Antivirus Updates for Malware Delivery
Dangerous ICS Malware Targets Orgs in Russia and Ukraine
Ukrainian Blackjack group used ICS malware Fuxnet against Russian targets

Latest Publications

NHS Digital hints at exploit sightings of Arcserve UDP vulnerabilities
Google, Apple gear to raise tracking tag stalker alarm
ASEAN organizations dealing with growing cyber menace
Security Curated Copyright © 2024. All rights reserved
Go to ITCurated!