"Hackers Use Windows Error Reporting Tool to Attack Devices"

Hackers are compromising systems by abusing the Windows Problem Reporting tool. Using a Dynamic Link Library (DLL) sideloading method, the attackers exploit WerFault.exe to load malware into the Random Access Memory (RAM) of a compromised system. The Windows executable enables the hackers to operate without raising suspicion. K7 Security Labs, an Indian Information Technology (IT) security firm specializing in antivirus and threat management solutions, discovered the malicious campaign. While the researchers were unable to identify the hackers, it is suspected that they are Chinese. Last summer, QBot malware distributors were observed using a similar attack chain, leveraging the Windows Calculator to avoid detection by security tools. This article continues to discuss the abuse of the Windows Problem Reporting tool by hackers. 

Techzine reports "Hackers Use Windows Error Reporting Tool to Attack Devices"