A scary backdoor is out there right now, targeting Windows, Linux, and macOS. This SysJoker malware is so scary because it is very good at evading detection and thus can cause harm without the user noticing.
SysJoker was first spotted by security researchers at Intezer, who then published one extremely detailed breakdown of malware, how harmful it can be and what it does. If you’re curious about all the rough details, I highly recommend reading the report as it’s quite insightful.
If you want the short version, we’ll break it down and make it a little easier to digest. Basically, variants are designed to target either Linux, Windows, or MacOS. It creates a series of files and registry commands that eventually allow it to install other malware, run commands on the infected device, or command the backdoor to remove itself.
The steps to get these are slightly different depending on the operating system. For example, on Windows there is a first-stage dropper in the form of a DLL that is not present on the other two operating systems. Regardless of the operating system, however, the end result is more or less the same.
Since this malware (for now) managed to evade antivirus software, you need to manually check if any of the created files exist. the people at computer beeps get a detailed breakdown of where to find the files and what to do if they are infected.
Basically, if you find the files described in the link above, end all processes related to the malware and delete the files manually. Next, run a memory scanner to see if all files have been uprooted from your computer and examine possible ways SysJoker may have infected your system to close security loopholes.
Now that the backdoor malware has been reported in full and in detail, you can expect the antivirus software to receive an update that will allow it to detect SysJoker like any other malware. In the meantime, be safe when downloading anything onto your computer, no matter what operating system you’re using.
And let that serve as a reminder that while antivirus software is necessary, it doesn’t fully protect against emerging threats, but it’s still worth installing a good one.
CONNECTED: What is the best antivirus for Windows 10? (Is Windows Defender good enough?)
This article was previously published on Source link