all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Analyzing WSH RAT

Add to bookmarks
May 31, 2024, 4:40 p.m. | ptwistedworld

System Weakness - Medium systemweakness.com

Hi, today I’ll detail down how I analyzed a WSH RAT sample in the form JavaScript. I acquired it in MalwareBazaar here https://bazaar.abuse.ch/sample/fad0c2df718c20c0615e237b5da75f6e93a867d7168921a6af3afb41834b4d05/ that was last uploaded on May 28, 2024.

Looking at the script we can immediately see that this is obfuscated so there’s really not much we can understand here other than the fact it has declared a variable “Q2a” that is equals to 28024695 and another variable “HIQPNL” declaring a bunch of strings minus Q2a.

What we’ll …

cyberchef cybersecurity javascript malware analysis security

Visit resource

More from systemweakness.com / System Weakness - Medium

Setup SSH Keys 4 hours ago | systemweakness.com
authentication brute cybersecurity gateway +22
# Privilege Escalation through Vim 4 hours ago | systemweakness.com
access article bug-bounty-tips commands +13
Webdav authentication, cadaver & CGI-script in RHEL Linux 4 hours ago | systemweakness.com
cadaver http-request kali linux linux +1
Offensive Rust For Hacker’s (Part — 1) | Why Rust?, Setup, Basic Concepts, Project & … 4 hours ago | systemweakness.com
cybersecurity development hacking rust +1
The MariaDB Installation Chronicles: Navigating Setup with Confidence 3 days, 1 hour ago | systemweakness.com
apache article database fact +11
Secure SHell Made Simple: From installation to SSH Tunneling 3 days, 1 hour ago | systemweakness.com
channel commands communication configuration +22
Terraform: AWS Step Scaling with Autoscaling 3 days, 1 hour ago | systemweakness.com
auto autoscaling aws blog +11
Directory Listing in Linux, and how to disable it. 3 days, 1 hour ago | systemweakness.com
access browser can default +15
Introduction to the Hyper-Key: The Future of Secure Key Management 3 days, 1 hour ago | systemweakness.com
advanced challenge consultant cryptographic +21

Jobs in InfoSec / Cybersecurity

Find Talent

Data Loss Prevention Analyst 1

@ Advanced Energy | Quezon City, 00, PH, n/a
View on infosec-jobs.com

TC-CS-DPP MS Purview-Staff

@ EY | Bengaluru, KA, IN, 560048
View on infosec-jobs.com

Consultant CSIRT Confirmé H/F (Paris)

@ EY | Paris La Défense, FR, 92037
View on infosec-jobs.com

Consultant Azure Cloud Sécurité CSPM H/F (Paris)

@ EY | Paris La Défense, FR, 92037
View on infosec-jobs.com

Consultant en Protection des Données (Microsoft Purview) H/F (Paris)

@ EY | Paris La Défense, FR, 92037
View on infosec-jobs.com

Business Continuity Coordinator

@ Sumitomo Mitsui Banking Corporation | Brea, CA, US, 92821
View on infosec-jobs.com