QBot Uses Windows Defender Antivirus Theme to Steal Passwords

QBot is a malware that affects Windows users. QBot malware uses a fake Windows Defender theme. The goal is to trick the target into running macros in an Excel file. This malware is able to use Windows Defender as bait to achieve its goal and steal passwords.

QBot malware uses Windows Defender Theme as Bait

Having security tools today is very important. There are many options that we have at our disposal. Many types of antivirus, both free and paid, for all systems. Also other varieties of security tools that are intended to protect computers properly.

Don’t Miss: Joker Malware Plagues Six Malicious Apps in Android Play Store

If we talk about popular antiviruses that are available, most commonly Windows Defender.

What QBot malware does is use a new template for the distribution of its malware that uses a fake Windows Defender theme. The goal is to trick the victim into enabling macros in an Excel file.

QBot Uses Windows Defender Antivirus Theme to Steal Passwords

If the target runs the macros file, they could run the threat and steal credentials and passwords. A problem that, as we see, puts our privacy and security at risk. It can also provide remote access to install ransomware.

Victims usually get infected with Qbot through another malware infection or through Phishing campaigns using various lures, including fake invoices, bank and payment information, scanned documents, or invoices. Along with these malicious emails are Excel files. Upon opening them, they will ask users to enable the content. In that case of doing so, it will infect your laptop or PC with malware.

Back to top button
Close