Free Phone Consultation For New Clients | CONTACT NOW

Emotet Returns, Now Adopts Binary Padding for Evasion

Emotet, a notorious and highly sophisticated malware, is back and more dangerous than ever. The malware, which is known for stealing sensitive data, is now using a new technique to evade detection and spread itself more rapidly.

Emotet is now packing its malicious payloads with binary padding, a technique which adds a layer of non-executable code to its payloads which makes it harder to detect. This technique was first discovered in the wild in late 2019, and since then has been used by other malware threats to try and evade detection.

Emotet’s use of binary padding is particularly concerning because it has the potential to increase the malware’s effectiveness in evading detection. Because the code is non-executable, it is not picked up by many antivirus and anti-malware programs. This allows Emotet to spread quickly and infect more systems without being detected.

What makes Emotet so dangerous is its ability to spread itself quickly and infect multiple systems with a single payload. With the addition of binary padding, it is even more difficult for security teams to detect and contain Emotet before it can do significant damage.

Emotet is a rapidly evolving threat that security teams need to be aware of. It is important to keep security solutions up to date and regularly scan for any signs of Emotet or other malware. It is also a good idea to educate users about the threat and what steps they can take to protect themselves from it.

Need secure managed IT for your business?