Today > | 3 Medium | 2 Low vulnerabilities   -   You can now download lists of IOCs here!

Tag: meduza

3 attack reports | 0 vulnerabilities

Attack reports

NetSupport RAT and RMS in malicious emails

The Horns&Hooves campaign, active since March 2023, targets Russian businesses with malicious email attachments containing scripts that install NetSupport RAT or BurnsRAT. The campaign evolved through several versions, improving obfuscation and delivery methods. It uses decoy documents and legitima…

obfuscation
phishing
rhadamanthys
russia
stealer
remote access
burnsrat
netsupport rat
meduza
2024-12-02
Published: December 2, 2024

Downloadable IOCs 35

Horns&Hooves campaign delivers NetSupport RAT and BurnsRAT

The Horns&Hooves campaign, active since March 2023, targets Russian businesses with malicious email attachments containing scripts that install NetSupport RAT or BurnsRAT. The campaign evolved through several versions, improving obfuscation and delivery methods. It uses decoy documents and legitima…

remote access
burnsrat
netsupport rat
meduza
2024-12-02
Published: December 2, 2024

Downloadable IOCs 0

BabbleLoader

BabbleLoader is a highly evasive malware loader designed to bypass antivirus and sandbox environments to deliver stealers into memory. It employs sophisticated techniques such as junk code insertion, metamorphic transformations, dynamic API resolution, and anti-sandboxing measures. The loader's fea…

loader
stealer
evasion techniques
2024-11-19
babbleloader
dynamic api resolution
anti-sandboxing
whitesnake
meduza
metamorphism
Published: November 19, 2024

Downloadable IOCs 43

» Click here to see all Attack Reports «