Cybersecurity researchers at ESET have discovered two previously undocumented Windows variants of the SprySOCKS backdoor, which was originally believed to target only Linux systems. The new variants, designated WIN_DRV and WIN_PLUS, feature hard-coded command-and-control configurations and support multiple communication protocols including TCP and UDP, representing a significant expansion of the C
Cybersecurity researchers have flagged two previously undocumented Windows variants of what was believed to be a Linux-only backdoor called SprySOCKS. "The Windows variants discovered are internally marked as WIN_DRV and WIN_PLUS," ESET said in a report shared with The Hacker News. "Both come with a hard-coded C&C [command-and-control] configuration and support communication over TCP, UDP,
Originally published at thehackernews.com
60-minute technical evaluation, no obligation. We'll map the ideas in this article to your environment.
