Devastating Malware For Hacking Banking Accounts May Be Linked To Hamas | Eastern North Carolina Now | Devastating malware that lets criminals hack into banking accounts, steal data, and spy on computer users is suspected of being linked to terrorist group Hamas‘ cyberwarfare division.

Coronavirus Disease 2019 (COVID-19)
    Publisher's Note: This post appears here courtesy of the The Daily Wire. The author of this post is Hank Berrien.

    Devastating malware that lets criminals hack into banking accounts, steal data, and spy on computer users is suspected of being linked to terrorist group Hamas' cyberwarfare division.

    The so-called "Remote Administration Tool," or RAT, is called Escanor and first surfaced on the Dark Web in January. It can infect computers through Microsoft Office documents, according to Resecurity, which protects Fortune 500 companies. Computers have reportedly been infected in the U.S., Canada, the United Arab Emirates, Saudi Arabia, Kuwait, Bahrain, Egypt, Mexico, Singapore, and Israel.

    "The tool can be used to collect GPS coordinates of the victim, monitor key strokes, activate hidden cameras, and browse files on the remote mobile devices to steal data," Resecurity warned.

    The domain name behind the dangerous tool, "escanor[.]live," may be linked to Molerats and APT-C-23, two units of the Hamas cyberwarfare division. Security Affairs reported that APT-C-23 is "known in particular to target Israeli military assets," and that Molerats, which has been linked to Hamas, has been active for over a decade.

    "It's also tracked as Gaza Hackers Team, Gaza Cybergang, DustySky, Extreme Jackal, Moonlight and TA402 - some researchers believe there are multiple groups operating under the same umbrella," Security Week reported.

    Escanor is a version of an Android- and PC-based remote administration tool that hackers use to infect Microsoft Office and Adobe PDF documents with malware, according to Security Affairs. But Escanor's power has been souped up with elements taken from "cracked" versions of other Dark Web tools, according to the company.

    The mobile version of Escanor, dubbed 'Escape-RAT,' intercepts banking OTPs, or "one-time passwords" that are generated for customers who don't choose their own. That allows the cybercriminal full access to the user's account, and also can spread malware that allows the criminal to activate cameras, track users, and carry out other potentially devastating acts.

    "Fraudsters monitor the location of the victim, and leverage Esca RAT to steal credentials to online-banking platforms and perform unauthorized access to compromised account from the same device and IP - in such case fraud prevention teams are not able to detect it and react timely," malware analyst Ali Saifeldin said.

    Escanor is a well-known force on the Dark Web, where criminals buy and sell an array of illegal goods and services. It also has over 28,000 subscribers on its Telegram channel. The actor behind the malware is believed to be the same person or persons behind other hacking tools sold on the Dark Web, including ones known as Venom RAT and Pandora HVNC, which may have been incorporated into Escanor.
Go Back

Leave a Guest Comment

Your Name or Alias
Your Email Address ( your email address will not be published)
Enter Your Comment ( no code or urls allowed, text only please )

‘Efff The Dickwad’: Scientist Claims Big Bang Disproven By James Webb Space Telescope, Gets Wrecked Daily Wire, Guest Editorial, Editorials, Op-Ed & Politics Florida Man Sentenced To 5 Years For Attempting To Extort Matt Gaetz’s Father


Latest Op-Ed & Politics

Microsoft co-founder Bill Gates, the world’s fifth-richest man, thinks that Communist China should be praised for the way it has handled poverty.
The U.S. Air Force has continued its initiative for a more inclusive, and gender-neutral military by removing all flight sticks from their planes — effective immediately.
New data from the UK shows gender clinic referrals have doubled since previous year
Supermodel Gisele Bündchen recently opened up about her husband Tom Brady coming out of retirement and returning to the NFL.
The expert codebreaking team at the NSA is working to decipher all the statements Biden made in his speech today, which the White House has promised to walk back as soon as they figure out what on earth he was saying.
Underdog Trump-Republican Karoline Leavitt won the GOP primary for New Hampshire’s First Congressional District on Tuesday.
Pat Harrigan, Republican nominee for Congress in North Carolina’s 14th District, was today named a “Young Gun” by the National Republican Congressional Committee.
The U.S. Coast Guard has rescued nearly two dozen people in Florida as of Thursday morning following the devastation from Hurricane Ian, with more rescues expected throughout the day.


In an ingenious move commonly used by pet owners, White House staff members have announced that they will be fitting Joe Biden with a custom-made jingle bell collar that will make it easier for them to locate the wayward President when he wanders off aimlessly.
European Commission President Ursula von der Leyen said on Wednesday that the European Union might redistribute profits from fossil fuel companies and impose energy consumption limits.
National publication The Hill lists North Carolina's U.S. Senate race among the seven contests nationwide where partisan control is most likely to "flip."
Utah GOP Senator Mitt Romney, who has been suspected of being squishy on conservative issues, has refused to endorse fellow Utah GOP Senator Mike Lee, a strong conservative in his re-election campaign, outraging his fellow GOP senators.
Tom Brokaw wrote his book, The Greatest Generation, about the men of World War Two. They rose up to defend a nation under attack, with great resolve that our United States would survive and thrive.
While speaking at a public symposium on behalf of The Association of Donut Lovers, Georgia Governor Stacey Abrams claimed obesity was just numbers manufactured by her bathroom scale.
A media-praised transgender major in the U.S. Army, and their spouse, a Johns Hopkins anesthesiologist, have been federally indicted for allegedly trying to leak medical information on U.S. Military members to the Russian government.
Last week, U.S. Secretary of Education Miguel Cardona announced the National Blue Ribbon Schools  for 2022.


Back to Top