New Windows Trojan Steals Browser Credentials, Outlook Files

2020-12-14 16:34

Researchers have discovered a new information-stealing trojan, which targets Microsoft Windows systems with an onslaught of data-exfiltration capabilities- from collecting browser credentials to targeting Outlook files.

"AridViper is an active threat group that continues developing new tools as part of their arsenal," researchers with Palo Alto's Unit42 research team said in a Monday analysis.

"The usage of Python built-in libraries is expected for multiple purposes, such as interacting with Windows processes, Windows registry, networking, file system and so on," said researchers.

While PyMicropsia is designed to target Windows operating systems only, researchers found snippets in the code that check for other operating systems.

"For now, the code found is very simple, and could be part of a copy and paste effort when building the Python code, but in any case, we plan to keep it on our radar while researching new activity."

News URL

https://threatpost.com/windows-trojan-steals-browser-credentials-outlook-files/162223/

#browser #credential #outlook #trojan #windows

News URL

Related news