Recently, researchers from Trend Micro discovered a new type of malware that can masquerade aspopular game launcher.
LokiBot developers continue to develop theirproduct. Previously, researchers reported that the virus, which steals account passwords and other confidential information, can infect devices using the Windows Installer service, as well as through ISO files.
On February 14, Trend Micro employees reportedA new type of malware that pretends to be the installer for the popular Epic Games launcher. The fake installer was created using the NSIS (Nullsoft Scriptable Install System). Once launched, the malware downloads a C# source code file and an executable file in .NET format to the victim's computer.
LokiBot avoids detection with C # code,which allows you to bypass protection mechanisms that are aimed exclusively at binary files. Executing a virus code allows fraudsters to obtain various information from the victim’s device.
Let us recall that cybersecurity experts recently warned about a malicious version of the Tor browser, which has been stealing bitcoins (BTC) on the darknet since 2017.
Based on materialsblog.trendmicro.com