Techly NewsGet the app

Get the latest tech news

I Found Malware in a BeamNG Mod


An analysis using Process Monitor and WinDbg, dealing with JavaScript, WASM, and Windows shellcode.

This DLL is the real malware and a quick analysis reveals it’s an infostealer that steals passwords from browsers and the Exodus crypto wallet app. VirusTotal reports that most antivirus programs detect the DLL as malicious, including Microsoft Windows Defender, but there is about a one-week gap between the April 1st update and the first analysis. Starting with an antivirus alert, we used Process Monitor and WinDbg to gather important details, and then uncovered each layer of the malicious code with reverse engineering.

Get the Android app

Or read this on Hacker News

Read more on:

Photo of malware

malware

Photo of beamng mod

beamng mod

Related news:

News photo

Open source text editor poisoned with malware to target Uyghur users

News photo

Cybersecurity CEO accused of running malware on hospital PC blabs about it on LinkedIn

News photo

Cybersecurity Firm CEO Charged with Installing Malware on a Hospital Computer

« ‘Fortnite’ Will Return to U.S. iOS App Store After Court Finds Apple Willfully Violated Court Order in Epic Games Suit
Epic Games touts victory in latest court ruling in Apple antitrust case »