Security News > 2020 > December > Hacker-for-hire group develops new stealthy Windows backdoor
Kaspersky researchers discovered a previously undocumented Windows PowerShell malware dubbed PowerPepper and developed by the hacker-for-hire group DeathStalker.
The new PowerPepper implant was discovered by Kaspersky in May 2020 while researching other attacks using the group's other PowerShell-based implant known as Powersing.
Since its discovery, PowerPepper has been under constant development with new versions being deployed and its delivery chains being adapted to new targets.
This new malware is an in-memory Windows PowerShell-based backdoor that allows its operators to execute shell commands delivered remotely via a command-and-control server.
Using Windows Compiled HTML Help files as archives for malicious files.
News URL
Related news
- Hackers Exploit Legitimate Websites to Deliver BadSpace Windows Backdoor (source)
- Kimsuky hackers deploy new Linux backdoor via trojanized installers (source)
- Kimsuky hackers deploy new Linux backdoor in attacks on South Korea (source)
- New Warmcookie Windows backdoor pushed via fake job offers (source)