Havex RAT Authors Self-Sign Malware to Appear from IBM, 64-Bit Version Spotted

2014-Dec-31 | Tags: antispywareantivirus

Start64!New infections with Havex remote access Trojan (RAT) have been discovered by security researchers, who observed that malware authors attempt to bypass detection by signing the threat themselves. The files with the spoofed digital signature attempt to pass as components created by IBM’s software division.

Researchers from Trend Micro also found the first version of the malware designed to compromise 64-bit systems.

Newly found 64-bit version pre-dates 32-bit ones - Havex RAT has been created for the purpose of stealing data from targets in different activity sectors such as industrial (ICS/SCADA), manufacturing, pharmaceutical, construction or education.