Tag: c2 communication

2 attack reports | 0 vulnerabilities

Attack reports

DarkVision RAT

Published: October 10, 2024

DarkVision RAT is a customizable remote access trojan that first appeared in 2020, offered on Hack Forums for $60. Written in C/C++ and assembly, it offers features like keylogging, screenshots, file manipulation, process injection, remote code execution, and password theft. The analysis reveals a …

Downloadable IOCs 0

purecrypter
c2 communication
multi-stage attack
2024-10-10
remote access trojan
darkvision rat

Zharkbot Strings

Published: September 3, 2024

Zharkbot is a C++ downloader with extensive anti-analysis and anti-sandbox features. It uses in-line string encryption and API calls, making static and emulation analysis challenging. The malware performs sandbox detection by checking for specific usernames and hypervisors. It installs itself in th…

Downloadable IOCs 2

persistence
anti-analysis
amadey
downloader
2024-09-03
anti-sandbox
string encryption
c2 communication
zharkbot

DarkVision RAT

Published: October 10, 2024

DarkVision RAT is a customizable remote access trojan that first appeared in 2020, offered on Hack Forums for $60. Written in C/C++ and assembly, it offers features like keylogging, screenshots, file manipulation, process injection, remote code execution, and password theft. The analysis reveals a …

Downloadable IOCs 0

purecrypter
c2 communication
multi-stage attack
2024-10-10
remote access trojan
darkvision rat

Zharkbot Strings

Published: September 3, 2024

Zharkbot is a C++ downloader with extensive anti-analysis and anti-sandbox features. It uses in-line string encryption and API calls, making static and emulation analysis challenging. The malware performs sandbox detection by checking for specific usernames and hypervisors. It installs itself in th…

Downloadable IOCs 2

persistence
anti-analysis
amadey
downloader
2024-09-03
anti-sandbox
string encryption
c2 communication
zharkbot
» Click here to see all Attack Reports «