Rust竊資軟體Fickle利用PowerShell繞過使用者帳號控制防護機制
支付動態 · 2024-06-24
研究人員揭露一種以Rust打造的竊資軟體Fickle,對方不僅利用多種管道散布,並透過PowerShell指令碼繞過使用者帳號控制防護機制,然後回傳從受害電腦竊得的資料
而在竊資軟體的啟動過程裡,惡意酬載會執行一連串的檢查,避免在沙箱或是虛擬機器運作,然後從加密貨幣錢包、Chrome、Firefox等瀏覽器,以及AnyDesk、Discord、FileZilla、Signal、Skype、Steam、Telegram等網路應用程式收集用戶資訊,再者,該竊資軟體也會從特定資料夾收集敏感資料,並使用JSON字串外流資料。
特別的是,攻擊者也能透過遠端伺服器指定收集的資料標的,使得竊取資料的範圍變得更加彈性。
Popular articles
1spin4win grows its Latin American presence by partnering with Fortuna Juegos
Online Game
HUIDU Invites You to Booth T70 at iGB L!VE 2026 — Let’s Ignite London This July!
HUIDU Focus
Gaming & Technology Expo Makes a Powerful Entrance in CDMX
Marketing
Full House at GAT Expo Cartagena 2026 Academic Agenda
Online Game
JILI Partners with Cricket Legend AB de Villiers (ABD) to Launch Exclusive Branded Game Series 100% 11
Sports Game
Kazakhstan plans to penalise online casino promotions
Regulation
GGC Awards 2026 Shines in Colombo: Honoring Leaders and Innovators in the iGaming Industry
HUIDU Focus
PropellerAds Shared a New iGaming Case Study: 97,674 Installs and 12,701 Deposits in 3 Months
Marketing
Vietnam’s Controlled Gaming Shift Gains Ground, But Domestic Demand Still Lags
Southeast Asia
British gambling levy rates confirmed for each vertical
Regulation
1spin4win releases unique slot Don Catleone Hold and Win featuring gangster cats
Online Game
Super PAC Raises $48 Million: Sports Betting Forces Ramp Up Political Push
Regulation
Online gambling, crypto pose ongoing money laundering risks in Philippines, analyst says
Southeast Asia
GAT CDMX 2025 Institutional Academy: Leaders and Experts Analyze the Present and Future of the Gaming Industry in Mexico and Lat
Sports Game
B2B Tech Infrastructure Gains Momentum in Philippine Gaming Sector
Southeast Asia
