 |
| Image via CrunchBase |
Everyone know that Evernote is a popular note-taking tool for many users and it is very famous in the market at present but it is something behind this by which you will think about it before its use.
Trend Micro has uncovered a Malware that uses Evenote as a Communication and
Control (C&C) Server and this Malware is detected as BKDR_VERNOT.A.
 |
|
BKDR_VERNOT.A strings showing how it attempts to access Evernote
|
How it attempts to connect via Evernote here is the answer:
https://evernote.com/intl/zh-cn, which is a legitimate URL.
What can this Malware do?
- Downloading, executing, and renaming files
- Gathers information from the infected system
- Gather details about its OS, timezone, user name, computer name, registered owner and organization.
One more thing to know about this that Malware receives malicious instruction from the Evernote accounts and at same time , it also stores the harvested information in the Evernote accounts.
To avoid this threat, you must always be cautious with visiting unknown websites and opening email messages.
