Security News > 2022 > March > BitRAT malware now spreading as a Windows 10 license activator
A new BitRAT malware distribution campaign is underway, exploiting users looking to activate pirated Windows OS versions for free using unofficial Microsoft license activators.
In a new BitRAT malware distribution campaign discovered by researchers at AhnLab, threat actors are distributing the malware as a Windows 10 Pro license activator on webhards.
While there are ways to get Windows 10 for free, you still need a valid Windows 7 license to get the free upgrade.
Those who do not want to deal with licensing issues or do not have a license to upgrade commonly turn to pirating Windows 10 and using unofficial activators, many of which contain malware.
Instead of activating the Windows license on the host system, the "Activator" will download malware from a hardcoded command and control server operated by the threat actors.
Once the malware installation process is completed, the downloader deletes itself from the system leaving behind only BitRAT. A versatile RAT. BitRAT is promoted as a powerful, inexpensive, and versatile malware that can snatch a wide range of valuable information from the host, perform DDoS attacks, UAC bypass, etc.
News URL
Related news
- Windows 10 KB5037768 update released with new features and 20 fixes (source)
- Microsoft fixes Windows zero-day exploited in QakBot malware attacks (source)
- Beware: These Fake Antivirus Sites Spreading Android and Windows Malware (source)
- Windows 10 KB5037849 update released with 9 changes or fixes (source)
- Microsoft announces first Windows 10 Beta build since 2021 (source)
- Windows 10 KB5039211 update released with new feature, 12 fixes (source)
- New Cross-Platform Malware 'Noodle RAT' Targets Windows and Linux Systems (source)
- Pakistan-linked Malware Campaign Evolves to Target Windows, Android, and macOS (source)
- Microsoft says bug causes Windows 10 apps to display Open With dialogs (source)