Terminator | Malware Analysis | BYOVD Attack | Antivirus Killer

Avoiding Big Brother

antivirus killer byovd cyberattack cybercriminals cybersecurity malware analysis ransomware attack spyboy terminator

description

This is a malware analysis video where I take a look at a recent threat known as 'Terminator'. A threat actor going by the name 'Spyboy' is hyping up this malware program and selling it to other cyber criminals. It can bypass up to 23 different antivirus or EDR programs.

But Terminator is not cutting edge hacking technology. It uses a technique that has been around for several years now. The technique is known as 'Bring Your Own Vulnerable Driver' (BYOVD). BYOVD attacks will see a threat actor drop a driver file onto the target machine. The driver will have a vulnerability that is exploited by the attacker usually via malicious code.

Once the driver is dropped onto a device it can bypass security and perform tasks for the hacker. In the case of Terminator, the driver is known as Zemana. This is an anti-malware program itself but the driver is used by the threat actor to bypass security using its legitimate certificate and signature.

The BYOVD allows Terminator to execute and remove security solutions. If you are a victim of Terminator you will suddenly see the processes of your antivirus solution in Task Manager disappear before your eyes!

For extra content that is too dangerous for YouTube, you can subscribe to the ABB Patreon for as little as £3 a month and support me. https://www.patreon.com/AvoidingBigBrother

Head over to the ABB donate page to find out more about supporting the channel including funding campaigns: https://avoidbigbro.com/donate/

You can support me on Ko-Fi by giving me a tip: https://ko-fi.com/avoidbigbro

I have dropped the pitch of my voice for the videos and use the alias of Brian Bladen for privacy reasons. I am also paranoid of being hacked!

FREE TRAINING on our website at https://avoidbigbro.com/lp-courses/

My available books/ebooks on Amazon 'Covert Techniques' a guide about privacy and how to avoid surveillance. 'Operation Aurelius' a fictional novel. 'The Bear Roars' my research on Russian state-sponsored APT groups. Author Brian Bladen ... https://www.youtube.com/watch?v=knMVpX8FnsA

created

2023-07-10

staked

0.04574618 LBC

license

Copyrighted (contact publisher)

File size

19815886 Bytes