Collaborate Disseminate
By Paul Dokas, Keith Jones, Anthony Kasza, Yacin Nadji, & Vern Paxson – Corelight Labs Team Recently Blackberry analyzed a new GoLang Remote Access Trojan (RAT) named “ChaChi.” This sample was interesting in that it tunnels information over DNS as … Continue reading Corelight Sensors detect the ChaChi RAT
What is the difference between a Remote Access Trojan and a hidden Virtual Network Computing?
It seems that both software allows a hacker to access a victim’s computer and to spy on activity.
By Habiba Rashid
StrRAT malware steals credentials and changes file name extension to .crimson but it does not encrypt any data like in a ransomware attack.
This is a post from HackRead.com Read the original post: Watch out as fake ransomware attack in… Continue reading Watch out as fake ransomware attack infects PCs with StrRAT
By Habiba Rashid
The malware allows attackers to steal credentials, take screenshots, webcam data, browser, clipboard data, system, and network info.
This is a post from HackRead.com Read the original post: Microsoft shares details of malware attack on… Continue reading Microsoft shares details of malware attack on aerospace, travel sector
By ghostadmin
ToxicEye is a new remote access Trojan (RAT) malware targeting Telegram app users – The RAT has been used for more than 130 attacks over the past three months.
This is a post from HackRead.com Read the original post: ToxicEye RAT hits Tel… Continue reading ToxicEye RAT hits Telegram app to spy, steal user data
By ghostadmin
ToxicEye is a new remote access Trojan (RAT) malware targeting Telegram app users – The RAT has been used for more than 130 attacks over the past three months.
This is a post from HackRead.com Read the original post: ToxicEye RAT hits Tel… Continue reading ToxicEye RAT hits Telegram app to spy, steal user data
I published the following diary on isc.sans.edu: “No Python Interpreter? This Simple RAT Installs Its Own Copy“: For a while, I’m keeping an eye on malicious Python code targeting Windows environments. If Python looks more and more popular, attackers are facing a major issue: Python is not installed by default
The post [SANS ISC] No Python Interpreter? This Simple RAT Installs Its Own Copy appeared first on /dev/random.
Continue reading [SANS ISC] No Python Interpreter? This Simple RAT Installs Its Own Copy
By Habiba Rashid
The malware used in this attack is XtremeRat (ExtRat) which is a commercially available remote access trojan (RAT). Here’s what we know so far.
This is a post from HackRead.com Read the original post: Gamers targeted in new malware att… Continue reading Gamers targeted in new malware attack with games cheat codes
I published the following diary on isc.sans.edu: “From VBS, PowerShell, C Sharp, Process Hollowing to RAT“: VBS files are interesting to deliver malicious content to a victim’s computer because they look like simple text files. I found an interesting sample that behaves like a dropper. But it looks also like Russian
The post [SANS ISC] From VBS, PowerShell, C Sharp, Process Hollowing to RAT appeared first on /dev/random.
Continue reading [SANS ISC] From VBS, PowerShell, C Sharp, Process Hollowing to RAT
By Deeba Ahmed
Dubbed LodaRAT, the trojan was equipped with credential-stealing capabilities earlier, but now it is eyeing Android users.
This is a post from HackRead.com Read the original post: LodaRAT Windows malware now hunting Android devices
Continue reading LodaRAT Windows malware now hunting Android devices