Is a keystroke logger that specifically targets processes related to the Remote Desktop Protocol (RDP). It works by using a low-level keyboard input hook, which enables it to capture keystrokes in specific contexts such as mstsc.exe and CredentialUIBroker.exe.
Remote Desktop Protocol (RDP), a secure network communication protocol offered by Microsoft, allow users to connect with and use a faraway desktop computer from a separate computer. Remote desktop users can access their desktop, open and edit files, and use applications as if they were actually sitting at their desktop computer.
When this malware is deploy on your system is can capture keystrokes in mstsc.exe and CredentialUIBroker.exe and send it to the attecker. The effect of this is going to be huge for your organization.
Nowadays most of employees are working remotely for their organization. The work of the remote employers can be classified as confidentiality. And if hackers get access to employee work station then ..... Check the demo for clear understanding.
RDP_HIJACKING.mp4
Copyright © 2023 - Tahiru0nSecurity
By Nuhu Tahiru
Made with 🧠, ⌨ & 🖱