Home > News content

Windows gravityrat malware is now attacking Android and MacOS

via:cnBeta.COM     time:2020/10/21 2:07:24     readed:105

GravityRAT is a malware known for detecting virtual machines or sandboxes by checking the CPU temperature of Windows computers, and has now become a multi-platform spyware because it can now also be used to infect Android and macOS devices. GravityRAT remote access trojans (RAT) have been actively developed by seemingly pakistani hackers since at least 2015 and deployed in targeted attacks against indian military organizations.


2020 Tmall double 11 coupons import global good goods from October 21 to start pre-sale

The updated rat sample was detected while analyzing an Android spyware application (travel mate Pro), which steals contacts, e-mails and files, which are sent to the online command and control server, which is also used by two other malicious applications (enigma and titanium) for windows and Mac OS platforms.

The spyware malware launched by these malicious applications on infected devices runs multi platform code, which allows attackers to access system information, search for files with extensions of. Doc,. Docx,. PPT,. Pptx,. XLS,. Xlsx,. PDF,. ODT,. ODP, and. ODS on computers and removable disks, and upload them to the server to obtain running processes List, wiretap, screen capture, arbitrary execution of shell commands, recording and scanning ports.

China IT News APP

Download China IT News APP

Please rate this news

The average score will be displayed after you score.

Post comment

Do not see clearly? Click for a new code.

User comments