Kumhlaba ongayekeleliyo wezoyikiso ze-cybersecurity, ukuvela kweGoBear, i-malware ephucukileyo yasemva, iphakamise inkxalabo enkulu phakathi kweengcali zokhuseleko. Yenziwe ngolwimi lweGo kwaye yaqinisekiswa ngesatifikethi esisemthethweni se-D2innovation Co.,LTD, iGoBear isebenza njengesoyikiso esifihlakeleyo esikwaziyo ukwenza imiyalelo engalunganga, ukuba idatha, kunye nokuququzelela ulawulo olukude ngabadlali abakhohlakeleyo. Eli nqaku lijonge kwizinto ezintsonkothileyo zeGoBear, izenzo zayo, iziphumo, kwaye libonelela ngesikhokelo esibanzi sokususwa kunye nokuthintela.
GoBear Malware Overview
IGoBear, ephawulwe njenge i-malware yasemva, ibeka ngokwahlukileyo ngokusebenzisa ulwimi lweGo kunye nokufumana isiqinisekiso sokwenyani seD2innovation Co.,LTD. Esi satifikethi sinyanisekile songeza umaleko wokuntsokotha, sichaza ubusela obunokwenzeka okanye ukusetyenziswa okungagunyaziswanga.
I-malware isebenza ngokuphumeza imiyalelo engalunganga efunyenwe kwi-Command and Control (C&C) iseva, ivumela abahlaseli ukuba baseke ufikelelo oluqhubekayo kwinkqubo eyosulelekileyo. I-GoBear ithatha inyathelo eliya phambili ngokudibanisa ukusebenza kommeli we-SOCKS5, iphucula amandla ayo kunye nokukwazi ukuququzelela unxibelelwano olufihlakeleyo okanye ukufihla imisebenzi yomhlaseli.
Izenzo kunye neziphumo
- Ubusela beDatha: I-GoBear isebenzisa imiyalelo efana ne-malware ye-BetaSeed, ejonge ukubiwa idatha kwinkqubo yexhoba. Oku kunokubandakanya ulwazi olubuthathaka, iziqinisekiso zokungena, kunye nedatha yeshishini lobunikazi.
- Ulawulo LWERIMOTHI: Ubume bomva beGoBear buvumela abahlaseli ulawulo olukude kunye nokukhohlisa isixhobo esosulelekileyo. Oku kunokubandakanya ukufakela i-malware eyongezelelweyo, ukwenza imisebenzi yokwazisa, okanye ukuqalisa izenzo ezingalunganga.
- Udibaniso loMmeli we-SOCKS5: Ukubandakanywa komsebenzi we-SOCKS5 we-proxy ucebisa ukuba kunokwenzeka ukubaleka ukubhaqwa, ukuhambisa i-traffic enobungozi ngokusebenzisa iiseva zomlamli, kunye nokufihla imisebenzi yomhlaseli.
Amagama okuFumana kunye nezoyikiso ezifanayo
I-GoBear ichongiwe ziinkqubo ezahlukeneyo zokhuseleko phantsi kwamagama afana neWin64:Evo-gen [Trj], Gen:Variant.Lazy.459270, A Variant Of Win32/GenCBL.EKB, Trojan.Win32.SelfDel.imwn, kunye neTrojan:Win64 /SelfDel!MTB. Ngokucacileyo, yabelana ngesiqinisekiso se-D2innovation Co., i-LTD kunye nenye i-malware eyaziwa ngokuba yiTroll.
Isikhokelo sokuSusa
Ukuphelisa i-malware yeGoBear kwinkqubo yakho yeWindows, landela esi sikhokelo sokususa esibanzi:
- Ukususwa Ngesandla:
- Chonga kwaye uphelise iinkqubo ezikrokrisayo usebenzisa uMphathi woMsebenzi.
- Fumana kwaye ucime iifayile ezinobungozi ezinxulumene neGoBear.
- Susa amangeniso obhaliso adityaniswe kwi-malware usebenzisa iRegistry Editor.
- Uhlalutyo lwenethiwekhi: Ukuqhuba uhlalutyo lwenethiwekhi ukuchonga kunye nokuthintela unxibelelwano kunye nomncedisi weC & C.
- Ukhuseleko lweSoftware Scan: Yenza iskena esicokisekileyo nge-antivirus esemthethweni okanye isoftware echasene ne-malware ukubona kwaye ucime nayiphi na imikhondo eseleyo yeGoBear.
Amanyathelo okukhusela
- Uhlaziyo lwesoftware: Hlaziya rhoqo isixokelelwano sakho esisebenzayo, isoftware, kunye nezixhobo zokhuseleko ukuze udibanise ubuthathaka.
- Ukuqaphela i-imeyile: Yiba nobulumko ngokuncamathela kwi-imeyile, ngakumbi kwimithombo engaziwayo okanye ekrokrisayo.
- Imikhwa yokukhangela eKhuselekileyo: Kuphephe ukutyelela iiwebhusayithi ezisengozini, ukucofa iintengiso eziyingozi, okanye ukukhuphela isoftware kwimithombo engathembekanga.
- Amalungelo omsebenzisi: Ukunciphisa amalungelo omsebenzisi ukunciphisa impembelelo yosulelo olunokubakho lwe-malware.
isiphelo
IGoBear ime njengesoyikiso esoyikekayo kwindawo yohlaselo lwe-cyber, isebenzisa iindlela eziphucukileyo zokuthomalalisa iinkqubo kunye nokuba ulwazi olubuthathaka. Ukuqonda izenzo zayo, iziphumo, kunye nokuphumeza izenzo zokhuseleko ezomeleleyo ngamanyathelo abalulekileyo ekukhuseleni oku kunye noku. izoyikiso ezifanayo. Hlala unolwazi, hlala uphaphile, kwaye ubeke phambili ukhuseleko kwi-cybersecurity ukukhusela indawo yakho yedijithali ekuveleni izoyikiso ze-malware ezifana neGoBear.