There’s a new botnet malware on the loose, called Corebot, that researchers believe has the potential to develop into a significant threat.
The malware was first spotted by IBM Security X-Force, and Damballa followed up with a deep dive into how the malware works, and what else the malware’s author is working on.
The malware itself is particularly clever, said Loucif Kharouni, senior threat researcher at Damballa, in that it is written from scratch to be modular, making it easy for the author to add plugins to do specific tasks.
“Most malware is based on older malware, on Zeus code for example,” he said. “This one looks like it was built new, from scratch.”