Lipatlisiso tsa ts'ireletso li fumane malware a bulang likou tsa Remote desktop ho firewall. Likou tsa RDP (Remote desktop) li thehiloe, sena se nolofalletsa bahlaseli ho hlekefetsa likou tsa RDP hamorao.
Malware ea Sarwent e 'nile ea sebelisoa ho tloha 2018. Qalong ea 2020 Vitali Kwemez o ile a romela tweet ka malware a Sarwent empa ho na le tlhahisoleseding e fokolang mabapi le malware a Sarwent inthaneteng.
Tsela eo malware a Sarwent a jalang ka eona ha e tsejoe ka botlalo; ho belaelloa hore Sarwent e hasana ka malware a mang, mohlomong ka botnets.
Se tsejoang ka Sarwent ke hore kamora ts'oaetso, malware a theha e ncha Windows ak'haonte ea mosebelisi komporong ebe e bula port ea RDP 3389 khomphuteng le ho Firewall. RDP e tla buloa e le hore hamorao u fihlele komporo e tšoaelitsoeng ka lisebelisoa tse entsoeng Windows akhaonto ea mosebedisi.
Liaterese tsa IP tsa Sarwent, li-hashes tsa MD5, le libaka li tsejoa ho tloha Sarwent, lintlha tsena li abeloa ho IOCs (Indicators of compromise) bakeng sa lik'hamphani ho lemoha Sarwent.