AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |
Back to Blog
Reddit winrar3/16/2024 ![]() Any other version is vulnerable to these attacks. WinRAR users should ensure at once they are using version 5.70. People should be reflexively suspicious of any file offered for download online. It can backup your data and reduce the size of email attachments, decompress RAR, ZIP, and other files downloaded from the Internet, and create new archives in RAR and ZIP file format. They’re also being advertised on Twitter. This is a powerful compression tool with many integrated additional functions to help you organize your compressed archives. Web searches such as this one show that an Ariana Grande RAR file with the same title identified by McAfee is currently circulating on BitTorrent download services. Schmugar didn’t say if all 100 exploits McAfee identified install the same malware. Once the computer was rebooted, it installed a generic trojan that, according to the Chronicle-owned VirusTotal service, was detected by just nine AV providers. Under the hood, however, the RAR file also extracted a file titled “hi.exe” to the startup folder. Screenshots included in the post show that the malicious file extracts benign MP3 files to the target’s download folder. The next time the system restarts, the malware is run.” User Access Control (UAC) is bypassed, so no alert is displayed to the user. “When a vulnerable version of WinRAR is used to extract the contents of this archive, a malicious payload is created in the Startup folder behind the scenes. “One recent example piggybacks on a bootlegged copy of Ariana Grande’s hit album Thank U, Next with a file name of ‘Ariana_Grande-thank_u,_next(2019)_.rar,’” McAfee Research Architect Craig Schmugar wrote in the post. ![]()
0 Comments
Read More
Leave a Reply. |