Nnyocha nchekwa achọpụtala malware na-emepe ọdụ ụgbọ mmiri dịpụrụ adịpụ na firewall. A na-edozi ọdụ ụgbọ mmiri RDP (Desktọpụ dịpụrụ adịpụ), nke a na-eme ka ọ dịrị ndị na-awakpo mfe iji ọdụ ụgbọ mmiri RDP mee ihe mgbe e mesịrị.
A na-eji Sarwent malware eme ihe kemgbe 2018. Na mmalite nke 2020 Vitali Kwemez zigara tweet banyere Sarwent malware mana enwere obere ozi gbasara Sarwent malware na ịntanetị.
Ụzọ a na-esi gbasaa Sarwent malware abụghị nke a maara kpamkpam; A na-enyo enyo na Sarwent na-agbasa site na malware ndị ọzọ, ikekwe na botnets.
Ihe a maara banyere Sarwent bụ na mgbe ọrịa ahụ gasịrị, malware na-emepụta ọhụrụ Windows akaụntụ onye ọrụ na kọmpụta wee mepee ọdụ ụgbọ mmiri RDP 3389 na kọmpụta yana na Firewall. A ga-emepe RDP ka emechaa nweta kọmputa butere ọrịa site na nke emepụtara Windows akaụntụ onye ọrụ.
A na-amata adreesị IP Sarwent, MD5 hashes, na ngalaba site na Sarwent, a na-ekesa nkọwa ndị a na IOC (Ndị na-egosi nkwenye) maka ụlọ ọrụ iji chọpụta Sarwent.