Friday, August 14, 08:22
Home security Parallax RAT: The dangerous trojan sold on hacking forums

Parallax RAT: The dangerous trojan sold on hacking forums

Parallax RATAccording to the security researcher MalwareHunterTeam, one Trojan allowing the remote access and is called Parallax RAT is distributed through malicious software spam campaigns. Installing the RAT on the victim's machines allows the attackers to obtain it complete control of the infected system.

Since December 2019, the researcher has been monitoring Parallax RAT samples as they have appeared on VirusTotal and other related services.

At a low price of $ 65 per month, attackers prefer this one malicious software to acquire access on the victims' computer and steal credentials and files or execute commands.

The attackers can use the stolen items data to steal more data to access online bank accounts and spread Parallax RAT to others victims.

The Parallax RAT is for sale into a hacking forums

Since the beginning of December 2019, the Parallax RAT for sale in hacking forums. The developers promote it tool and provide support to users.

Parallax hackers promote the product saying it is 99% reliable and suitable for both professionals as well as beginners.

The Parallax RAT has been developed by a hacking team whose goal was to create the best tool for remote management.

“Parallax RAT will provide you with everything you need. Suitable for both professionals and beginners. First of all, we offer 99% stability in terms of stability. The Parallax RAT was designed to offer the user a truly multilevel performance and fast speed with minimal resource consumption. We are a team of developers and we are here to offer quality services"Says the team behind the Parallax RAT.

Attackers can purchase a RAT license for one month for just $ 65 or for three months for $ 175.

What does Parallax RAT promise?

  • Theft of credentials
  • Remote desktop capabilities
  • Uploading and downloading files
  • Run remote commands on the infected computer
  • Encrypted links
  • Windows XP Support via Windows 10

Hackers also claim that the software is able to bypass them Windows Defender, Avast, AVG, Avira, Eset and BitDefender. However, this is probably not the case, since the RAT has been detected.

Malicious distribution emails

Parallax RAT can be deployed in a number of ways. However, the researchers have noticed that it is distributed mainly through spam emails with malicious attachments.

For example, in the message below, hackers represent one company wishing to buy products.

If the victim opens the malicious attachment, the process begins exploiting vulnerability Microsoft Office Equation Editor (CVE-2017-11882). If the content is enabled, malicious macros will be run to install RAT.

Hackers use a variety of methods. Either they use intermediate loaders or they instantly install Parallax RAT on the computer.

At least two researchers have found a loader that downloads an image from it Imgur image sharing site. The image contains a built-in Parallax executable. This executable is extracted from the image and executed in computer.

The RAT is then copied to another location and executed in other processes.

Once installed, a shortcut to Windows Startup folder, so that it runs automatically when a user logs on system.

This allows attackers to access the computer whenever they want.

Once Parallax RAT is installed, attackers can steal saved codes access and archives, execute commands and gain complete control of the computer.

For many of the Parallax samples, command & control servers are hosted on the free DNS server duckdns.org.

The best way to protect against this kind of malware is to avoid emails from unknown sources. Users should always be very careful not to open suspicious emails and attachments.

LEAVE ANSWER

Please enter your comment!
Please enter your name here

Absent Mia
Absent Miahttps://www.secnews.gr
Being your self, in a world that constantly tries to change you, is your greatest achievement

LIVE NEWS

The 20 best gaming consoles of all time

On the threshold of the new generation of consoles, such as the PlayStation 5 and the Xbox Series X, these are the most important and ...

Smart locks: Every home needs to have one!

Home security is a complex issue, but anything is safer than hiding a spare key in a very ...

LinkedIn: How do you record and display the pronunciation of your name?

Having a last name that almost no one pronounces correctly can sometimes be annoying. Thus, LinkedIn attempts ...

Cyber ​​attacks: 5 steps to deal with security incidents

Every organization is prone to cyber attacks and, when it happens, there is a small line between rescuing your network security and ...

Protect your personal data while on vacation

Have you had the chance to go on vacation and lose your passport, your wallet or other ...

How to get Snapchat on your computer

One of the most popular applications in recent years, Snapchat, has given many hours of fun and communication to its users. But did you know ...

Windows applications you need to delete for a better experience!

Some Windows applications are necessary for a computer to function properly, while others often cause problems. These are applications that ...

How to test the new data-saving video settings of Chrome 86?

If there's one issue with the upcoming Chrome 86 update, it seems to be efficiency. Users expect a ...

Netflix: How to change the language in profiles, subtitles and audio

Netflix is ​​not just an English-language streaming service with content from around the world. You can easily watch movies and ...

How to block spam calls and messages on Android?

Android can help you block and get rid of annoying spam calls. If you block ...