Attackers Rely on ‘Exotic’ Languages for Malware Creation>
Bank Info Security –
A report released by BlackBerry reveals that malware developers are increasingly using “exotic” programming languages like Go, Rust, DLang, and Nim to create malicious code.
These languages offer benefits such as avoiding detection by security tools and adding a layer of obfuscation to attacks.
Threat actors are leveraging these languages to create loaders and droppers for remote access Trojans (RATs) and malicious versions of legitimate tools.
Older malware written in traditional languages like C++ and C# is also being wrapped in droppers or loaders written in newer languages to avoid detection.
Go, in particular, has gained popularity due to its ease of use, reliability, and efficiency.
Some notable malware developed using Go includes ElectroRAT, a cryptocurrency-stealing RAT, and Ekans/Snake, a ransomware that targets IT networks and industrial control systems.
Other languages like Nim are also being used to create loaders and deliver secondary malware such as Cobalt Strike.
The shift towards newer programming languages is driven by the ease of use, compatibility with target systems, and the ability to generate lightweight executables.
Link: https://www.bankinfosecurity.com/attackers-rely-on-exotic-languages-for-malware-creation-a-17142