Litsebi tsa ts'ireletso tsa Microsoft li lemositse basebelisi ka litlhaselo tse tsoang ho moepong oa chelete ea crypto ea bitsoang Dexphot, e 'nileng ea lebisa likhomphutha tsa Windows ho tloha ka Mphalane selemong se fetileng. Ts'ebetso e phahameng ea malware e tlalehiloe ka Phuptjane selemong sena, ha likhomphutha tse fetang 80 lefatšeng ka bophara li ne li tšoaelitsoe.
Tlaleho e bolela hore ho kenella ka har'a lik'homphieutha tsa bahlaseluoa, malware a sebelisa mekhoa e sa tšoaneng ho qoba tšireletso, ho akarelletsa le encryption, obfuscation, le tšebeliso ea mabitso a lifaele tsa marang-rang ho pata mokhoa oa ho kenya. Ho boetse hoa tsebahala hore morafo ha a sebelise lifaele leha e le life nakong ea ts'ebetso ea ho qala, a phethahatsa khoutu e mpe ka ho toba mohopolong. Ka lebaka lena, e siea mesaletsa e fokolang haholo ho tlaleha boteng ba eona. Ho qoba ho fumanoa, Dexphot e thibela mekhoa ea Windows e nepahetseng, ho kenyelletsa unzip.exe, rundll32.exe, msiexec.exe, joalo-joalo.
Haeba mosebelisi a leka ho tlosa malware komporong, lits'ebeletso tsa ho beha leihlo lia qala 'me ts'oaetso e qala hape. Tlaleho e bolela hore Dexphot e kenngoa lik'homphieutha tse seng li tšoaelitsoe. E le karolo ea letšolo la hajoale, malware e fihla lits'ebetsong tse tšoaelitsoeng ke vaerase ea ICloader. Li-module tse kotsi li jarolloa ho tsoa ho li-URL tse 'maloa, tse sebelisoang hape ho nchafatsa malware le ho etsa ts'oaetso hape.
"Dexphot ha se mofuta oa tlhaselo o hohelang tlhokomelo ea boralitaba. Lena ke le leng la matšolo a mangata a bileng teng ka nako e telele. Morero oa eona o atile haholo mekhoeng ea botlokotsebe ba cybercriminal mme e ipapisitse le ho kenya mochini oa "cryptocurrency" o sebelisang ka lekunutu lisebelisoa tsa khomphutha molemong oa bahlaseli, "ho boletse mohlahlobi oa malware oa Microsoft Defender ATP Hazel Kim.
Source: 3dnews.ru