Newly Discovered BOOTRASH Malware Is Almost Undetectable - Boots Before Windows Loads


There’s a new bout of malware doing the rounds which is virtually undetectable. The malware has been in use the entire year but has only just been discovered, owing to the fact it boots before Windows has even loaded. The so-called ‘bootkit’ BOOTRASH burrows down to your system at the deepest possible level, becoming one of the first things to begin running when you boot your PC up.

The BOOTRASH malware is part of the renowned Nemesis series of malware. Previously this was targeted at financial institutions, but it now appears is if a popularised version of the malware is being used to obtain personal details. It is capable of transferring files, capture images, logging keystrokes, and injecting its own processes.
Because BOOTRASH runs before Windows itself loads, Windows has extreme difficulty in detecting its presence. Even a total reinstallation of Windows won’t remove it from your system, hiding away from your Windows install.
How does it achieve all this? Well, it works by infecting the Master Boot Record (MBR), which is the primary utility that loads when you turn on your system. From here the MBR can load up hard drive partitions and detect your Windows boot. The bootkit integrates itself between partitions, so the MBR cannot detect it.
"The use of malware that persists outside of the operating system requires a different approach to detection and eradication," wrote security firm FireEye in a blog post. "Malware with bootkit functionality can be installed and executed almost completely independent of the Windows operating system. As a result, incident responders will need tools that can access and search raw disks at scale for evidence of bootkits."
Detecting it and getting rid of it seems like a tricky business then, with the only surefire way being a total format of the hard drive. It’s a bit disconcerting never knowing it’s there, but hopefully someone can figure out a way to combat this.

Comments

Post a Comment

Popular posts from this blog

XCOM 2 season pass and preorder bonus revealed

Image
Preorder bonuses are standard fare these days, and XCOM 2 will be no exception. 2K has announced that gamers who lay down their money up front will be given the Resistance Warrior Pack, with extra customization options and a new "Survivor of the Old War" recruit, at no extra charge. It also unveiled a season pass that will add three themed DLC packs to the game is also available, and there's a new trailer, too. The season pass, called the Reinforcement Pack, will include the "rebellion-themed" Anarchy's Children, which will add more "dramatic" soldier customizations; Alien Hunters, with yet more customization options, more powerful weapons and armor, a new mission; and Shen's Last Gift, featuring an all-new class of soldier with unique weapons and armor, and an additional "narrative-driven mission and map." Anarchy's Children is slated to come out in the spring of 2016, while Alien Hunters and Shen's Last Gift will follow ...
Read more

Coming South Park game is harder for black characters

Image
Don't worry, this doesn’t affect combat. Just every other aspect of your whole life.” A GIF showing the difficulty/skin-color choices in  South Park: The Fractured But Whole Ubisoft 131 Writers from  John Scalzi  to author  Shannon Sullivan  have called being white living life in "easy mode" when compared to the treatment that people of color receive. The upcoming RPG  South Park: The Fractured But Whole  takes that concept and integrates it right into the gameplay, increasing the difficulty for created characters as their chosen skin tone becomes darker. Eurogamer  was among the first to notice and publicize the feature. At a recent preview event, the site  captured footage  showing difficulty levels ranging from "easy" for a light-skinned character to "very difficult" for the darkest skin option. "Don't worry, this doesn't affect combat," character Eric Cartman says as you operate the slider. "Just every other aspec...
Read more

CD Projekt will remain focused on The Witcher in 2016

Image
We heard earlier this week that CD Projekt's next RPG epic, Cyberpunk 2077, will maybe— maybe , I said!—be out in 2016. As it turns out, a release date has actually been set, but CEO Adam Kiciński said in an interview with  Money.pl  (translated by  NeoGAF ) that the studio won't reveal it until it's ready to start the marketing campaign. And that's not likely to happen for a good while yet, because the focus in 2016
Read more