This Borat-themed malware is not funny in the slightest

A newly discovered RAT comes with a myriad of destructive features

When you purchase through links on our site, we may earn an affiliate commission.Here’s how it works.

Cybersecurity researchers have discovered a potent newmalwarestrain that comes with a number of dangerous features and abilities.

Named Borat (after the protagonist of the popular Sacha Baron Cohen film), the malware is a remote access trojan (RAT),ransomwaretool and spyware all in one, which can also be used to launch distributed denial of service (DDoS) attacks and UAC bypass.

Researchers from the cybersecurity firm Cyble managed to obtain a sample of the malware and, after a closer inspection, discovered that it can take control of the target’s mouse and keyboard, access files and network points, and hide its presence on theendpoint.

We’re looking at how our readers use VPNs with different devices so we can improve our content and offer better advice. This survey shouldn’t take more than 60 seconds of your time. Thank you for taking part.

Click here to start the survey in a new window«

Triple trouble

Among the Borat malware’s vast array of features are a keylogger, audio recorder,webcamrecorder, reverseproxy,passwordstealer and Discord token stealer.

Researchers aren’t sure if Borat is being sold online, or just distributed for free. Cyble says it comes bundled up with a builder, different malware modules, and aservercertificate.

Usually, such malware gets distributed on dark web sites, in torrent files masquerading aspatchesand cracks, and on fake phishing sites that promise free software and other things.

The researchers described it as a “unique combination of RAT, spyware and ransomware”, making it a “triple threat” to any compromised device.

Are you a pro? Subscribe to our newsletter

Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!

Cybercriminals are infiltrating our Microsoft Excel spreadsheets now>This dangerous malware affects nearly all devices, and somehow remained undetected until now>This nasty trojan uses Discord as a command and control server

“With the capability to record audio and control the webcam and conduct traditional info-stealing behavior, Borat is clearly a threat to keep an eye on,” the researchers concluded.

BleepingComputertried to uncover who the masterminds behind Borat are, and found that the payload executable was recently identified as AsyncRAT, which suggests the authors probably based their work on this particular RAT.

To stay safe, security researchers suggest everyone stays vigilant when downloading software and only downloads content from trusted sources.

ViaBleepingComputer

Sead is a seasoned freelance journalist based in Sarajevo, Bosnia and Herzegovina. He writes about IT (cloud, IoT, 5G, VPN) and cybersecurity (ransomware, data breaches, laws and regulations). In his career, spanning more than a decade, he’s written for numerous media outlets, including Al Jazeera Balkans. He’s also held several modules on content writing for Represent Communications.

Dangerous Android banking malware looks to trick victims with fake money transfers

Sophos Firewall hack on government network used an all-new custom malware

Don’t wait until Black Friday, this year’s best Nintendo Switch bundles are on sale now