The Ukrainian Cyberpolice has arrested a 25-year-old malware developer. He was behind the creation of remote access – RAT trojan, which was spread to 10,000 computers. The offender was caught with the help of the Khmelnychchyna Cybercrime Department. This is a regional police investigative department and the SBU regional department.
The Malware Operation – RAT Trojan
The developer created a viral software that he claimed was an application for computer games. However, in reality, it was a RAT malware that allows him real-time access to 600 infected computers. The malware enabled him to download files, steal credentials, and drop additional payloads. It also helps them install or delete programs, and snap screenshots. It can also intercept sound or video from the computer’s microphone and cameras. After collecting the data, the attacker accessed his victims’ accounts. Then hackers and stole “electronic funds,” although it is unclear whether it was online banking deposits or cryptocurrency assets.
It is unknown whether the attacker limited himself to Ukrainian victims or targeted computers in other countries as well. The police did not provide any information on how the hacker distributed the malware. The only thing we know is it was done through game applications. However, previous malware distribution campaigns for similar infections were done through YouTube videos. These videos was promoting game mods and cheats, Google Ads, malvertizing, social media marketing campaigns, direct messages, and emails.
The Arrest
During the raid at the suspect’s house, the police found and confiscated equipment used to carry out the malicious acts. The malware developer now faces criminal charges for violations of part 5 of Art. 361 of Ukraine’s crime law, on unauthorized interference with the work of information (automated), electronic communication, information and communication systems, and electronic communication networks. The maximum penalty for the above is 15 years of imprisonment.
Ukraine’s Fight Against Cybercrime
Despite being embroiled in a bloody conflict with Russia since February 2022, Ukraine has shown remarkable resilience in combating cybercrime and maintaining law and order within its borders. The country’s police force has been working hard to tackle a wide range of cybercrimes, from taking down disinformation botnets and arresting ransomware operators to defending complex cyberattacks on government and energy infrastructure organizations.
In conclusion, the Ukrainian Cyberpolice arrested a malware developer who created a RAT malware disguised as game applications and infected over 10,000 computers. The attacker had real-time access to 600 infected computers, enabling him to steal credentials, download files, install or delete programs, snap screenshots, and intercept sound or video from the computer’s microphone and cameras. Despite being involved in a conflict with Russia, Ukraine has shown its resilience in combating cybercrime and maintaining law and order within its borders. The country’s police force has been working hard to tackle a wide range of cybercrimes.
