Emotet is one of the most dangerous malicious programs. It can steal bank account and install other types of other malicious programs. More recently, Emotet operators are adopting a new method spread: through neighboring Wi-Fi networks. It uses the API collection called wlanAPI nearby wireless network (such as WPA) as SSID, signal strength and encryption methods, and then try to log in with a list of common user name and password combination.
If successful login, the infected machine will enumerate all non-hidden devices connected to the network, and then use the second list to guess the password credentials for connected devices.
It will also try to guess the shared resources administrator password. If successful guess the password of the connected device, it will load Emotet and other malicious programs. It recommends that users change their passwords weak passwords and using strong passwords.
Binary Defense security company's researchers wrote in a recent article published in: "Through this new type loader found Emotet use the new threat vector to introduce Emotet functions previously considered only through spam. and spread the infected network, if the network uses a password insecurity, Emotet can use this loader type spread through nearby wireless networks. "