Microsoft Spots 'Nodersok' Malware That Turns PCs Into Zombie Proxies

Microsoft researchers have revealed a new malware campaign that is infecting thousands of computers worldwide.

After infecting a PC, malware, dubbed Nodersok, can put them behind the scenes to launch other cyber attacks.

Microsoft’s Defender Advanced Threat Protection (ATP) research team said, “Most of the targets are consumers, but about 3 percent of encounters are seen in areas such as education, business services, healthcare, finance and retail.”

Also Read: Call of duty mobile to launch on October 1 for Android & iOS.

“The campaign is particularly interesting, not only because it employs advanced techless techniques, but also because it relies on an elusive network infrastructure that causes the attack to fly under the radar,” the researchers said. Wrote

The attack begins when a user downloads and runs an HTML application (HTA) file called Player1566444384.hta.

Also Read: Low cost & Low power network developed for 5G technology.

The filename marks vary with each attack.

Analysis of Microsoft Defender ATP Telemetry pointed to compromised advertisements as the most likely transition vector for delivering HTA files.

The Inquirer reported that executing those files starts a process that opens the Powershell script, Excel, and JavaScript and installs Nodersoc malware to download.

To get updated with latest technology news, Like, Share and Follow us at Facebook & Twitter.