Today > vulnerabilities   -   You can now download lists of IOCs here!

Tag: valleyrat

3 attack reports | 0 vulnerabilities

Attack reports

ValleyRAT Insights: Tactics, Techniques, and Detection Methods

ValleyRAT is a remote access Trojan targeting Chinese-speaking users through phishing campaigns. It employs multi-stage, multi-component tactics to evade detection and maintain persistence. The malware uses various techniques including process injection, registry manipulation, and UAC bypass. It at…

phishing
evasion
persistence
valleyrat
remote access trojan
2024-10-25
uac bypass
chinese-speaking targets
Published: October 25, 2024

Downloadable IOCs 3

A Deep Dive into a New ValleyRAT Campaign Targeting Chinese Speakers

FortiGuard Labs recently encountered an ongoing malware campaign specifically targeting Chinese speakers. The attack utilizes a multi-stage malware named ValleyRAT, which employs diverse techniques to monitor and control victims while deploying arbitrary plugins. A notable characteristic is its hea…

windows registry
shellcode
valleyrat
2024-08-16
sandbox evasion
cmstplua com class
Published: August 16, 2024

Downloadable IOCs 34

New Updates to ValleyRAT

Zscaler ThreatLabz recently uncovered a new campaign used to deliver the latest iteration of ValleyRAT, a remote access trojan attributed to a China-based threat actor. The campaign involves multiple stages, with the initial stage downloader utilizing an HTTP File Server (HFS) to fetch subsequent c…

2024-06-10
valleyrat
Published: June 10, 2024

Downloadable IOCs 26

» Click here to see all Attack Reports «