all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Stories from the SOC Part 2: MSIX Installer Utilizes Telegram Bot to Execute IDAT Loader

Add to bookmarks
April 10, 2024, 1 p.m. | Tom Elkins

Rapid7 Blog blog.rapid7.com

In part one of our blog series, we discussed how a Rust based application was used to download and execute the IDAT Loader. In part two of this series, we will be providing analysis of how an MSIX installer led to the download and execution of the IDAT Loader.

analysis application blog bot download idat loader incident detection installer led loader malware managed detection and response (mdr) msix our blog research rust series soc stories telegram telegram bot

Visit resource

More from blog.rapid7.com / Rapid7 Blog

New! Insight Agent Support for ARM-based Windows in InsightVM 1 day, 14 hours ago | blog.rapid7.com
agent arm assessment devices +8
Metasploit Weekly Wrap-Up 05/31/2024 1 day, 14 hours ago | blog.rapid7.com
cve cve-2024 directory directory traversal +15
CVE-2024-24919: Check Point Security Gateway Information Disclosure 2 days, 16 hours ago | blog.rapid7.com
access advisory check check point +22
Celebrating Excellence: Joanne Guarglia and Kelly Hiscoe Recognized as CRN's 2024 Women of the Channel 2 days, 19 hours ago | blog.rapid7.com
awards career development channel team +1
Metasploit Weekly Wrap-Up 05/23/2024 1 week, 2 days ago | blog.rapid7.com
access broadcast code code execution +16
The Take Command Summit: A Day of Resilience and Preparation 1 week, 2 days ago | blog.rapid7.com
books command cybersecurity discussions +15
CVE-2024-4978: Backdoored Justice AV Solutions Viewer Software Used in Apparent Supply Chain Attack 1 week, 2 days ago | blog.rapid7.com
action attack audio cve +17
Rapid7 Releases the 2024 Attack Intelligence Report 1 week, 4 days ago | blog.rapid7.com
and response attack attack surface command +20
Metasploit Wrap-Up 05/17/2024 2 weeks, 1 day ago | blog.rapid7.com
capabilities ldap metasploit metasploit weekly wrapup +2

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland
View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City
View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL
View on infosec-jobs.com

Sr. Product Manager

@ MixMode | Remote, US
View on infosec-jobs.com

Security Compliance Strategist

@ Grab | Petaling Jaya, Malaysia
View on infosec-jobs.com

Cloud Security Architect, Lead

@ Booz Allen Hamilton | USA, VA, McLean (1500 Tysons McLean Dr)
View on infosec-jobs.com