This malware checks your system temperature to sidestep sandboxing


GravityRAT is a Trojan which checks the temperature of a system to detect the presence of virtual machines (VMs) and prevent efforts at analysis by researchers.

By taking thermal readings, the Remote Access Trojan (RAT), which has become a recent menace in India, attempts to find out whether or not VMs are being employed for the purpose of decompiling efforts and reverse engineering.

The approach is not foolproof, but according to Cisco Talos researchers, GravityRAT is able to detect a number of virtual environments using this method.

Read more…
Source: ZDNet