New Cryptominer Malware variant 'GOLANG'
Apps Unveiled|June 2020
According to the latest Threat Spotlight report by researchers at Cyber Security firm Barracuda Networks “A new variant of the cryptominer malware known as Golang is targeting both Windows and Linux machines. While the volume of attacks is low because the variant is so new, Barracuda researchers have seen seven source IP addresses linked to this malware so far, all based in China. Instead of targeting end users, this new malware attacks servers.” Here's a closer look at this evolving threat and solutions to help detect, block, and remediate the attacks as penned by Erez Turjeman, Senior Software Engineer and a Security Researcher for Barracuda Labs.
Barracuda Networks
New Cryptominer Malware variant 'GOLANG'

Highlighted Threat

New variant of “Golang” malware: This new malware variant attacks web application frameworks, application servers, and non-HTTP services such as Redis and MSSQL. Its main goal is to mine Monero cryptocurrency using a known miner, XMRig. The malware spreads as a worm, searching and infecting other vulnerable machines.

According to a blog post, “Earlier variants of this malware targeted only Linux machines, but this new iteration is also attacking Windows machines and uses a new pool of exploits. For example, some of the exploits the malware includes are targeting the ThinkPHP web application framework, which is popular in China. Similar to other families of malware, it is safe to assume this malware will keep evolving, employing more and more exploits.”

The Details

Once the malware infects a machine, it downloads the files (see Figure 1), which are customized based upon the platform being attacked. The attacks follow the same playbook, though, including an initial payload, an update script, a miner, a watchdog, a scanner, and a config file for the crypto miner. For Windows machines, the malware also adds a backdoor user.

Init/update scripts

この記事は Apps Unveiled の June 2020 版に掲載されています。

7 日間の Magzter GOLD 無料トライアルを開始して、何千もの厳選されたプレミアム ストーリー、9,000 以上の雑誌や新聞にアクセスしてください。

この記事は Apps Unveiled の June 2020 版に掲載されています。

7 日間の Magzter GOLD 無料トライアルを開始して、何千もの厳選されたプレミアム ストーリー、9,000 以上の雑誌や新聞にアクセスしてください。

APPS UNVEILEDのその他の記事すべて表示
The Last Case Of Benedict Fox
Apps Unveiled

The Last Case Of Benedict Fox

Dive into a twisted world of secret organizations, forbidden rituals, and cold-blooded murders in the evocative and hand-crafted Metroidvania that is The Last Case of Benedict Fox.

time-read
1 min  |
June 2022
PENTIMENT
Apps Unveiled

PENTIMENT

Set in 16th century Bavaria, Pentiment will take you on a narrative journey through the eyes of Journeyman Artist Andreas Maler who is working in the bygone scriptorium of Kiersau Abbey during a time of great social unrest.

time-read
1 min  |
June 2022
MINECRAFT Legends
Apps Unveiled

MINECRAFT Legends

Developed by Mojang Studios in partnership with Blackbird Interactive, Minecraft Legends takes you to the Minecraft universe in a fun and unique new way, as you lead your allies in heroic battles to defend the Overworld.

time-read
1 min  |
June 2022
WO LONG FALLEN DYNASTY
Apps Unveiled

WO LONG FALLEN DYNASTY

A joint creation by Team NINJA producers Fumihiko Yasuda (Nioh) and Masaaki Yamagiwa (Bloodborne), Wo Long: Fallen Dynasty follows the dramatic, action-packed story of a nameless militia soldier fighting for survival in a dark fantasy version of the Later Han Dynasty where demons plague the Three Kingdoms.

time-read
1 min  |
June 2022
A PLAGUE TALE REQUIEM
Apps Unveiled

A PLAGUE TALE REQUIEM

A Plague Tale: Requiem—the sequel to the critically acclaimed A Plague Tale: Innocence by Asobo Studio and Focus Entertainment— will be officially available on October 18; pre-order it now on Xbox Series X|S and PC.

time-read
1 min  |
June 2022
GROUNDED
Apps Unveiled

GROUNDED

Finally, after almost two years since the first announcement, Grounded is preparing to leave Game Preview this September as it launches its full 1.0 release.

time-read
1 min  |
June 2022
SCORN
Apps Unveiled

SCORN

Scorn is an atmospheric first-person horror adventure set in a nightmarish universe of odd forms and sombre tapestry. It is designed around the idea of “being thrown into the world.”

time-read
1 min  |
June 2022
FLINTLOCK THE SIEGE OF DAWN
Apps Unveiled

FLINTLOCK THE SIEGE OF DAWN

Join humanity’s last stand as gods and guns collide in an all-new action-RPG open-world adventure.

time-read
1 min  |
June 2022
HIGH ON LIFE
Apps Unveiled

HIGH ON LIFE

Fresh out of high school with no job and no ambition, you’ve really got nothing going for you until an alien cartel that wants to get high offhumanity invades Earth. These interstellar cartel creeps aren’t just taking over our stuff— they’re using humans as drugs.

time-read
1 min  |
June 2022
RAVENLOK
Apps Unveiled

RAVENLOK

Brought to you by the team behind the award-winning adventure Echo Generation, Ravenlok is the final game in the studio’s voxel trilogy. Savour the handcrafted adventure with their signature 3D pixel art style in stunning 4K resolution at 60fps.

time-read
1 min  |
June 2022