Download Certificate- CMOs | ECIO | Most Admired Brand | Most Trusted Company

Kaspersky discovers fileless malware inside Windows Event logs


By MYBRANDBOOK


Kaspersky discovers fileless malware inside Windows Event logs

Recently, Kaspersky published a detailed analysis of a complex attack involving a combination of various techniques and pieces of software and highlighted the use of Windows event logs as something completely new.

 

The Windows event log and Event Viewer are supposed to help users diagnose security issues and other problems in PCs. However, Kaspersky researchers encountered one hacker who used the event log itself against their target. The attacker inserted shellcode into the target's Windows event logs, leaving no files for antivirus to detect.

 

The hacking groups employed two types of Trojans for the last stage, gaining further access to the system. This was delivered through two different methods, both via HTTP network communications and by engaging the named pipes.

 

The HTTP network method saw the malicious file target the Windows system files, hiding a piece of malware by creating a duplicate of an existing file with “1.1” added to the string, which is assumed to be the malicious version of a file.

 

The other method is known as the Named-Based Pipes Trojan, which locates the Microsoft Help Data Services Module library within Windows OS files and then grabs an existing file to overwrite it with a malware version that can execute a string of commands. Once the malicious version is run, the victim’s device is scraped for architecture and Windows version information.

 

Denis Legezo, lead security researcher at Kaspersky said, “We witnessed a new targeted malware technique that grabbed our attention. For the attack, the actor kept and then executed an encrypted shellcode from Windows event logs. That’s an approach we’ve never seen before and highlights the importance of staying aware of threats that could otherwise catch you off guard. We believe it’s worth adding the event logs technique to MITRE Matrix’s Defense Evasion and Hide Artifacts section. The usage of several commercial pentesting suites is also not the kind of thing you see every day.”
 BREAKING NEWS  BREAKING NEWS
India-Made Micron Semiconductor Chips Are About To Enter Internat

India-Made Micron Semiconductor Chips Are About To Enter Internat...

In the first half of2025, the semiconductor packaging division of Micron T...

Indian startup OneAIChat announces unified interface for leading

Indian startup OneAIChat announces unified interface for leading ...

An Indian startup, OneAIChat has built a multi-modal AI aggregator to sav...

TCS and AWS to accelerate customers’ cloud migration and offer

TCS and AWS to accelerate customers’ cloud migration and offer ...

Tata Consultancy Services has forged a strategic alliance with Amazon Web...

ESET provides enhanced enterprise security through a newly develo

ESET provides enhanced enterprise security through a newly develo...

ESET is pleased to present the ESET Mobile Threat Defence module (EMTD) ...

 TECHNO TRENDS  Placeholder image
Microsoft to build a new data centre to support Thailand's tec

Microsoft to build a new data centre to support Thailand's tec

Microsoft has revealed intentions to construct a regional data centre as w...

SAP launches cloud services to help Indian scaleups innovate m

SAP launches cloud services to help Indian scaleups innovate m

SAP at SAP unveils now "GROW with SAP for Scaleups," a new cloud service d...

Denodo and Sonata form alliance to unlock data-to-value creati

Denodo and Sonata form alliance to unlock data-to-value creati

Denodo and Sonata Information Technology India Limited (SITL) have annou...

Google Play Store will now let users download two apps simulta

Google Play Store will now let users download two apps simulta

Google Play Store now lets users download two apps simultaneously. While a...

 E-Magazine 
 TECHNOTAINMENT  Placeholder image
Airtel Xstream Play strengthens regional content library, part

Airtel Xstream Play strengthens regional content library, part

ED attaches Raj Kundra, Shilpa Shetty’s Rs 97 crore worth as

ED attaches Raj Kundra, Shilpa Shetty’s Rs 97 crore worth as

The Enforcement Directorate (ED) has seized businessman Raj Kundra's pro
Salman Khan trolled for singing with B Praak at Anant Ambani's

Salman Khan trolled for singing with B Praak at Anant Ambani's

To celebrate Mukesh Ambani's youngest son Anant Ambani’s 29th birthday

 MOVERS & SHAKERS  Placeholder image
UiPath ropes in Raghu Malpani as Chief Technology Officer

UiPath ropes in Raghu Malpani as Chief Technology Officer

DigiCert names Atri Chatterjee as CMO

DigiCert names Atri Chatterjee as CMO

DigiCert has announced the appointment of Atri Chatterjee as Chief Market
Amagi names its Chief Product Officer

Amagi names its Chief Product Officer

Amagi announced the appointment of Richard Perkett as its Chief Product Of
 OPEN YOUR EYES  Placeholder image

How to secure confidential data while working remotely
Rising Uncertainty On The Start-ups At The Verge Of Collapse
Newer Technology Solutions To Ensure Business Continuity During COVID-19
Changing Dynamics Of Cybersecurity In The Age of Coronavirus
Growing cyberattacks is a raising concern ,it’s time to evaluate cloud-first strategy
 INTERVIEWS  Placeholder image
Forcepoint positions itself as a trusted protector of sensitiv

Forcepoint positions itself as a trusted protector of sensitiv

HPE’s transformation into an edge-to-cloud company is its un

HPE’s transformation into an edge-to-cloud company is its un

Hewlett Packard Enterprise (HPE) is driving towards one customer experience
Dell Technologies lives by its commitment of driving growth th

Dell Technologies lives by its commitment of driving growth th

Dell believes in an agile approach to innovation that leverages the brighte
 HOT PICK  Placeholder image
Lenovo launches IdeaPad Pro 5i in India with Intel Core Ultra

Lenovo launches IdeaPad Pro 5i in India with Intel Core Ultra

COLORFUL rolls out an array of gaming laptops

COLORFUL rolls out an array of gaming laptops

COLORFUL launched its incredible series of COLORFUL EVOL P15 gaming laptop
Dell Technologies launches new AI-powered commercial PC portfo

Dell Technologies launches new AI-powered commercial PC portfo

Dell Technologies has launched the broadest portfolio of commercial AI lap
 MAKE IN INDIA BRANDS   Placeholder image
MICROMAX INFORMATICS LTD. 

MICROMAX INFORMATICS LTD. 


NUMERIC INDIA, A Group Brand Legrand

NUMERIC INDIA, A Group Brand Legrand


FIREBOLTT

FIREBOLTT


POLYCAB INDIA PVT. LTD.   

POLYCAB INDIA PVT. LTD.   


 EMINENT CIO'S OF INDIA  EMINENT CIO'S OF INDIA

Maintaining and improving the internal technology processes to maximize productivity with automation

In my view, to increase efficiency and productivit...

Adoption of latest technologies has boosted the business digital transformation journey

Artificial Intelligence (AI) and Automation have a...

Always staying at the forefront of the technology  

Our vigilant Security Operations Center (SOC) proa...

 ICONS OF INDIA  Placeholder image

Technology Icons Of India 2023: Nandan Nilekani

Nandan Nilekani is the Co-Founder and Chairman of the Board, Infosys T...

Technology Icons Of India 2023: Sunil Bharti Mittal

Sunil Bharti Mittal is the Founder and Chairman of Bharti Enterprises,...

Technology Icons Of India 2023: Rajiv Srivastava

Rajiv Srivastava is the Managing Director of Redington Group. With 35 ...

 PARTNER SPEAKERS  EMINENT CIO'S OF INDIA

RAH infotech bolstering its position as a leading VAD with its commitment to excellence

The future of the IT industry in India is promising, with several trends and f...

The Ability To Be Flexible And Adaptable Is Essential For Navigating The Unknowns Of The Future

Shivaami’s support and encouragement play a vital role in helping enterprise...

Supertron’s holistic approach leveraging its comprehensive transformation

Supertron is prepared to participate & support integration of technology adapt...

 PSU  Placeholder image

C-DAC keeps India ahead in IT & Electronics R&D space  

Centre for Development of Advanced Computing (C-DAC) is the premier R&...

HPCL is transforming the energy landscape, across the nation and beyond 

HPCL is world-class energy company known for caring and delighting the...

Leading company into fertilizers in the country 

NFL is a dynamic organization committed to serve the farming community...

 VIDEOS  Placeholder image

 Top 25 Brands  Solution partners

Most Trusted Brands 2023 : HCL Technologies Limited   

HCL Technologies is a leader in innovation, and has a strong track record of ...

Most Trusted Brands 2023 : Tata Consultancy Services (TCS)  

TCS’s commitment to innovation helps it stay ahead of the competition and de...

Most Trusted Brands 2023 : Google India Pvt. Ltd.     

Google is credited for electrifying the online world by creating the Web’s b...

 Value-Added Distribution  Value-Added Distribution

B D SOFTWARE

BD Software is the distributor of IT security solutions in India. The ...

SAVEX TECHNOLOGIES PVT. LTD.

Savex Technologies is the 3rd largest Information & Communication Tec...

BEETEL TELETECH LTD.

: Beetel is one of the oldest and most reputed brands in the Industry,...

 ITFORUM 2024  
 WIITF 2024  
   
 CMO of the Year   Placeholder image
 WOMEN LEADERSHIP  Placeholder image
 EMINENT CIO's OF INDIA   Placeholder image
 TRENDS IN TECHNOLOGY  Placeholder image
MORE VIDEOS  Placeholder image
Brand Book
Brand Book
Brand Book
Brand Book
 ADVERTISEMENTS  Placeholder image
 TECHNOLOGY DISRUPTION Placeholder image

Tredence Raises $175 Mn in Series B Funding from Advent International

Tredence Raises $175 Mn in Series B Funding from Advent International

Huawei inks global patent cross-licensing agreement with OPPO

Huawei inks global patent cross-licensing agreement with OPPO

NEC Utilizes Digital Technologies to Create Healthcare and Life Science Business

NEC Utilizes Digital Technologies to Create Healthcare and Life Science Business

Where are we after one year since lockdown

Where are we after one year since lockdown

 UNICORNS REVOLUTIONISING Placeholder image

Eruditus Learning Solutions Private Limited

Eruditus Learning Solutions Private Limited

Makemytrip (india) Private Limited

Makemytrip (india) Private Limited

Coforge Limited

Coforge Limited

Curefit Healthcare Private Limited

Curefit Healthcare Private Limited


Copyright www.mybrandbook.co.in @1999-2024 - All rights reserved.
Reproduction in whole or in part in any form or medium without express written permission of Kalinga Digital Media Pvt. Ltd. is prohibited.
Other Initiatives : www.varindia.com | www.spoindia.org
ADMIRED BRANDS

AFTER MARKET SERVICES

CATEGORIES

DISTRIBUTORS & VADs
GOVERNMENT BODIES

INDUSTRY BODIES

MAKE IN INDIA

CONTACT US

SUBSCRIBE NOW