DTPacker Malware Delivers RATs and Infostealers
The DTPacker Malware is a malicious piece of software that is being used by cybercriminals to obfuscate and pack Remote Access Trojans (RAT.) So far, the criminals have been using a peculiar network of websites to spread the malware – Liverpool FC-themed pages. These websites are legitimate, but it seems that the cybercriminals have managed to compromise them. The DTPacker-packed payloads were hosted on these sites, and then delivered to victims through other means – like email spam or social media spam.
The DTPacker works both as a packer and a downloader – it comes with a pre-packaged payload, but it also has the ability to connect to a remote server and download additional malware. The criminals behind it appear to work primarily with RATs, and their focus is stealing sensitive data from the victim. They have used a wide range of RATs and infostealers like FormBook, AsyncRAT, and Agent Tesla.
Why is the DTPacker Malware Important for Criminals?
The purpose of the DTPacker Malware is to protect the payload while it is being delivered to victims. Since it can obfuscate its contents, it may be able to temporarily hide it from security tools and services – however, it is impossible to avoid detection fully. You can be sure that the DTPacker Malware and the malware it brings cannot infect your system if you invest in an up-to-date and reliable antivirus tool.