#programming #code #program #user #UX #jokes #HappyFriday #cyb3rcypher

Lucifer Malware Targeting Windows Machines.

New self-propagating malware, named Lucifer, was discovered recently. Malware targets Windows machines with cryptojacking and DDoS (distributed denial-of-service) attacks.

Malware is trying to find and exploit unpatched vulnerabilities. Some of them were Microsift Windows (CVE-2017-0144, CVE-2017-0145, CVE-2017-8464), Rejetto HTTP File Server (CVE-2014-6287), ThinkPHP RCE (CVE-2018-20062), Apache Struts (CVE-2017-9791), Lavarel Framework (CVE-2019-9081).

After exploiting, attacker connects to the C2 (command-and-control) server and executes arbitrary commands (TCP, UDP, HTTP DoS attack etc.).

Malware is self-propagating. It uses brute-force technique on the open TCP ports or Remote Procedure Call to get in. When in, Lucifer uses Certutil.exe command-line program to propagate itself.

#happymonday #MondayMotivation #programming #jokes #cyb3rcypher #computer