Usually scripts are stored in the resource section with resource names like “>AUTOHOTKEY SCRIPTAHK WITH ICON<”. Fileless malware –Executes malware payloads in memory without them being saved to disk.Īs with many scripting languages, AHK script can also be converted into standalone executables.Stealer – Keystroke stealer with worm-like spreading ability.Tricky-downloaders – (Fingerprinting): Fingerprints the system before downloading and executing the malware.Simple-downloaders –Trojans for downloading and starting the execution of malware.AHK is being used to create these malware types: Welcome to AutoHotKeyĪHK is a free, open-source scripting language for Windows that allows users to create scripts for all kinds of tasks such as form fillers, auto-clicking, and now malware packages. A recent trend from the bad guys is to use scripting languages such as AutoHotKey. While the specifics vary, the basic objective is to find an attack surface that isn’t closely controlled by security companies. Malware is always on the move to avoid detection.
0 kommentar(er)
