臺美國防工業會議相關人士遭到鎖定,駭客發動網釣攻擊企圖竊取機密
支付動態 · 2024-09-19
隨著臺海局勢日趨緊張,美國與臺灣今年即將舉辦的國防工業會議,有駭客盯上與會人士散布惡意軟體,企圖從他們的電腦當中竊取機敏資料
此LNK檔案會開啟惡意程式及誘餌PDF檔案,為了迴避偵測,駭客使用.NET程式的混淆工具Confuser處理惡意程式,並將其存放於電腦的啟動資料夾,使得該程式能夠隨著電腦開機執行。
而該惡意程式會從遠端伺服器取得其他作案工具,其中包含經過XOR演算法處理的DLL程式庫,駭客利用.NET的函數功能Assembly.Load,將解密的程式庫載入記憶體內,而不會在磁碟留下痕跡。
接著,DLL檔案將會從駭客控制的伺服器下載C#程式碼,並在受害電腦上編碼,完成後也在記憶體內執行。研究人員在分析的過程,無法取得最終的有效酬載,但根據駭客的程式碼分析,他們推測此有效酬載的最終目的,是為了從受害電腦竊取機敏資料,而能讓攻擊者進行下個階段的惡意活動。
至於攻擊者的身分,研究人員表示無法將這起事故的策略、技術、流程(TTP)與已知的駭客組織進行關聯,但他們推測,很有可能是長期針對臺灣的中國駭客所為。
热门文章
Across 6 Cities: HUIDU Invites You to 8 World Cup Parties Redefining High-Value Social Networking
HUIDU Focus
PropellerAds Shared a New iGaming Case Study: 97,674 Installs and 12,701 Deposits in 3 Months
Marketing
British gambling levy rates confirmed for each vertical
Regulation
B2B Tech Infrastructure Gains Momentum in Philippine Gaming Sector
Southeast Asia
Vietnam's tightening online gaming policy creates new market opportunities
Southeast Asia
Vietnam’s Controlled Gaming Shift Gains Ground, But Domestic Demand Still Lags
Southeast Asia
GAT Expo Puerto Rico Will Pulse with the New Era of Gaming in the Caribbean
Marketing
1spin4win grows its Latin American presence by partnering with Fortuna Juegos
Online Game
1spin4win releases unique slot Don Catleone Hold and Win featuring gangster cats
Online Game
New Jersey July Gambling Revenue Hits $606M, Sweeps Casinos Banned
Regulation
Full House at GAT Expo Cartagena 2026 Academic Agenda
Online Game
Gaming & Technology Expo Makes a Powerful Entrance in CDMX
Marketing
Super PAC Raises $48 Million: Sports Betting Forces Ramp Up Political Push
Regulation
Are you ready to maximize your earnings? Try ProPush.me Constructor!
Marketing
JILI Partners with Cricket Legend AB de Villiers (ABD) to Launch Exclusive Branded Game Series 100% 11
Sports Game
