Dissected: A dropper-as-a-service miscreants pay to push their malware onto potentially 1,000s of victims

2021-09-02 04:27

A dropper-as-a-service, which cyber-crime newbies can use to easily get their malware onto thousands of victims' PCs, has been dissected and documented this week.

The dropper is similar to a trojan, and it can sometimes have other functionality, but its main purpose is to get malware - which could be fetched from the internet, or unpacked from data within the dropper - running on a victim's computer.

With a dropper-as-a-service, a customer pays to have their malware distributed to these computers via droppers.

The DaaS typically uses a network of websites to deliver droppers onto victims' PCs that when run install and execute the customer's malware.

While investigating the spread of information-harvesting malware dubbed Raccoon Stealer, Sophos' Sean Gallagher and Yusuf Polat uncovered what they on Wednesday said was "a network of websites acting as a 'dropper as a service'."

Some of these services charge just $2 for 1,000 malware installs via droppers.

News URL

https://go.theregister.com/feed/www.theregister.com/2021/09/02/malware_droppers_sophos/

#malware