Security News > 2022 > March > BitRAT malware now spreading as a Windows 10 license activator
A new BitRAT malware distribution campaign is underway, exploiting users looking to activate pirated Windows OS versions for free using unofficial Microsoft license activators.
In a new BitRAT malware distribution campaign discovered by researchers at AhnLab, threat actors are distributing the malware as a Windows 10 Pro license activator on webhards.
While there are ways to get Windows 10 for free, you still need a valid Windows 7 license to get the free upgrade.
Those who do not want to deal with licensing issues or do not have a license to upgrade commonly turn to pirating Windows 10 and using unofficial activators, many of which contain malware.
Instead of activating the Windows license on the host system, the "Activator" will download malware from a hardcoded command and control server operated by the threat actors.
Once the malware installation process is completed, the downloader deletes itself from the system leaving behind only BitRAT. A versatile RAT. BitRAT is promoted as a powerful, inexpensive, and versatile malware that can snatch a wide range of valuable information from the host, perform DDoS attacks, UAC bypass, etc.
News URL
Related news
- New SteelFox malware hijacks Windows PCs using vulnerable driver (source)
- New CRON#TRAP Malware Infects Windows by Hiding in Linux VM to Evade Antivirus (source)
- Windows 10 KB5046613 update released with fixes for printer bugs (source)
- Microsoft just killed the Windows 10 Beta Channel again (source)
- Microsoft just killed the Windows 10 Beta Channel for good (source)
- Microsoft pulls WinAppSDK update breaking Windows 10 app uninstalls (source)
- Windows 10 KB5046714 update fixes bug preventing app uninstalls (source)
- New Windows 10 0x80073CFA fix requires installing WinAppSDK 3 times (source)
- Windows, macOS users targeted with crypto-and-info-stealing malware (source)
- Windows 10 KB5048652 update fixes new motherboard activation bug (source)