Skip to main content

Dell Secureworks uncovers trojan that hides in image files

posted onJune 16, 2015
by l33tdawg

L33tdawg: Saumil Shah's stegosploit in the wild!

A stealthy modular version of the Stegoloader banking trojan is spreading through malicious PNG files, according to researchers at Dell SecureWorks' Counter Threat Unit (CTU).

The CTU researchers reported uncovering the variant in a threat advisory, warning that the malware has an advanced modular architecture capable of dodging many traditional security tools.

"Malware authors are evolving their techniques to evade network and host-based detection mechanisms. Stegoloader could represent an emerging trend in malware: the use of digital steganography to hide malicious code," read the advisory. "Stegoloader has a modular design and uses digital steganography to hide its main module's code inside a PNG image downloaded from a legitimate website."

Source

Tags

Dell Security

You May Also Like

Recent News

Friday, November 29th

Tuesday, November 19th

Friday, November 8th

Friday, November 1st

Tuesday, July 9th

Wednesday, July 3rd

Friday, June 28th

Thursday, June 27th

Thursday, June 13th

Wednesday, June 12th

Tuesday, June 11th