New Windows rootkit hides files from detection
Security researchers have identified a new rootkit threat called Obscure#Bat that can hide malicious files and tasks on Windows systems. This rootkit uses a specific prefix to make files invisible to standard tools like Task Manager. Obscure#Bat operates by storing scripts in the Windows Registry and employing social engineering tactics, such as fake CAPTCHA tests, to trick users into executing harmful batch files. Once activated, it can conceal files and processes from detection. The malware is based on an open-source rootkit known as r77, which avoids traditional security measures. Users are advised to be cautious of scams and to inspect batch files before running them.