It scans the networks to determine SSIDs, encryption jot down, and authentication methods.
With this newly discovered loader-key in used by Emotet, a new threat vector is introduced to Emotets capabilities.
The researchers first noticed the Wi-Fi spreading binary being delivered by Emotet on January 23, 2020.
The executable has a timestamp of 4/16/2018, which was first submitted to the VirusTotal database on 05/04/2018.
This indicates that spreading Wi-Fi behavior has been running unnoticed for close to two years.
How does Emotet work?
Ultimately, it reports back to the command and control server to confirm the installation.
Like this, the malware attempts to infect as many devices as possible.
For more information regarding the findings, you’re free to read the detailed documentationhere.
source: www.techworm.net
