Malware that targets 19-year old WinRAR bug spreading via e-mail

Posted on Wednesday, February 27 2019 @ 10:27 CET by Thomas De Maesschalck
Remember the 19-year old vulnerability in WinRAR that I wrote about last week? Bleeping Computer reports cybercriminals are now abusing the flaw via an e-mail campaign. This piece of malspam is able to infect your computer with a backdoor by extracting a specially crafted RAR archive. There are some caveats though, the exploit only works if UAC is disabled or if WinRAR is running with administrator privileges.
If UAC is running, when you attempt to extract the archive it will fail to place the malware in the C : ProgramData folder due to lack of permissions. This will cause WinRAR to display an error stating "Access is denied" and "operation failed"[.]
To protect yourself, it's recommended to upgrade to the latest version of WinRAR.


About the Author

Thomas De Maesschalck

Thomas has been messing with computer since early childhood and firmly believes the Internet is the best thing since sliced bread. Enjoys playing with new tech, is fascinated by science, and passionate about financial markets. When not behind a computer, he can be found with running shoes on or lifting heavy weights in the weight room.


Loading Comments

Share this story!

Latest news

Latest reviews