Java RAT UNRECOM Mines for Litecoins, Infects Android Devices

  • 17 April 2014
  • 1 reply
  • 1313 views

Userlevel 7
Badge +54
Security researchers from Trend Micro have been analyzing a new version of an old Java RAT. The new version is detected as JAVA_OZNEB.B and it’s called UNRECOM (Universal Remote Control Multi-Platform). It was previously known as Adwind.

According to experts, the RAT is being distributed with the aid of spam emails. The malware is often disguised as product lists, catalogues or receipts. One spam run used to distribute UNRECOM leverages the reputation of American Express.

The fake bank emails inform recipients that their accounts have been suspended due to suspicious activity.
 
Full Article

1 reply

Userlevel 7
Badge +54
By paganinip on May 24th, 2014
 

Security Experts at Fidelis Cyber Security firm have recently discovered a new phishing campaign using the Unrecom RAT (remote access trojan).

 
Fidelis Cyber Security firm has recently issued the Fidelis Threat Advisory #1013 to detail a phishing campaign using the Unrecom RAT (remote access trojan).
Experts at Fidelis during the last two weeks have observed an increase in attack activity, based on this malicious agent, against the US and local government, technology, advisory services, health, and financial. The campaign also hit the financial industry in Saudi Arabia and Russia.
The Unrecom remote access tool was spread as attachments of phishing emails try to trick the users into thinking the emails are legitimate. Following a list of names used for the attachment in the phishing campaign:
 
Full Article

Reply