By JubileeX in Malware

Threat Scorecard

Ranking: 5,313
Threat Level: 20 % (Normal)
Infected Computers: 3,550
First Seen: April 3, 2013
Last Seen: September 12, 2023
OS(es) Affected: Windows

Darkleech is a malware infection that is a included in a malware campaign affecting Apache, the most popular web server software of the Internet, and taking over thousands of websites. Darkleech is an exploitation toolkit that exposes visitors of compromised websites to potential malware attacks. When installed on the corrupted PC, Darkleech embeds an invisible code into websites, which in turn stealthily opens a connection that exposes visitors to malicious third-party websites. Darkleech uses vulnerabilities in Plesk, Cpanel, or other applications to control hacked websites. Darkleech may also use social engineering, password cracking, or attacks exploiting unidentified bugs in frequently used applications and operating systems. Darkleech uses a sophisticated array of conditions to find out when to add malevolent links into the websites illustrated to victims. Visitors using IP addresses that belong to security and hosting companies are passed over, as are people who have recently been affected or who don't access the websites from particular search queries.


Darkleech may call the following URLs:



Most Viewed