ANY.RUN Analyze New Node.js Malware with Unprecedented Capabilities

Researchers at the interactive sandbox ANY.RUN have identified a new, difficult-to-detect Node.js malware called Lu0Bot. The malware is particularly difficult to detect as it employs multi-layer JavaScript obfuscation and targets a widely-used web applications runtime environment. Capable of stealing personal information and controlling victims’ computers, Lu0Bot could be more widespread than currently thought and has the potential for significant capabilities expansion.