Security News > 2022 > March > BitRAT malware now spreading as a Windows 10 license activator
A new BitRAT malware distribution campaign is underway, exploiting users looking to activate pirated Windows OS versions for free using unofficial Microsoft license activators.
In a new BitRAT malware distribution campaign discovered by researchers at AhnLab, threat actors are distributing the malware as a Windows 10 Pro license activator on webhards.
While there are ways to get Windows 10 for free, you still need a valid Windows 7 license to get the free upgrade.
Those who do not want to deal with licensing issues or do not have a license to upgrade commonly turn to pirating Windows 10 and using unofficial activators, many of which contain malware.
Instead of activating the Windows license on the host system, the "Activator" will download malware from a hardcoded command and control server operated by the threat actors.
Once the malware installation process is completed, the downloader deletes itself from the system leaving behind only BitRAT. A versatile RAT. BitRAT is promoted as a powerful, inexpensive, and versatile malware that can snatch a wide range of valuable information from the host, perform DDoS attacks, UAC bypass, etc.
News URL
Related news
- Windows, macOS users targeted with crypto-and-info-stealing malware (source)
- Windows 10 KB5048652 update fixes new motherboard activation bug (source)
- New Malware Technique Could Exploit Windows UI Framework to Evade EDR Tools (source)
- Windows 10 users urged to upgrade to avoid "security fiasco" (source)
- Microsoft to force install new Outlook on Windows 10 PCs in February (source)
- Windows 10 KB5049981 update released with new BYOVD blocklist (source)
- FBI wipes Chinese PlugX malware from thousands of Windows PCs in America (source)
- Microsoft ends support for Office apps on Windows 10 in October (source)
- Windows 11 24H2 now also offered to all eligible Windows 10 PCs (source)
- January Windows 10 preview update force installs new Outlook (source)