all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

AsyncRAT loader: Obfuscation, DGAs, decoys and Govno

Add to bookmarks
Jan. 5, 2024, 11:05 a.m. | MalBot

Malware Analysis, News and Indicators - Latest topics malware.news

Executive summary


AT&T Alien Labs has identified a campaign to deliver AsyncRAT onto unsuspecting victim systems. During at least 11 months, this threat actor has been working on delivering the RAT through an initial JavaScript file, embedded in a phishing page. After more than 300 samples and over 100 domains later, the threat actor is persistent in their intentions.


Key takeaways:



  • The victims and their companies are carefully selected to broaden the impact of the campaign. Some of the identified …

actor alien amp asyncrat campaign decoys dgas domains embedded executive file javascript labs loader obfuscation page phishing rat systems threat threat actor victim working

Visit resource

More from malware.news / Malware Analysis, News and Indicators - Latest topics

State of ransomware in 2024 55 minutes ago | malware.news
attacks breaches businesses continue +20
LABScon23 Replay | macOS Components Used in North Korean Crypto-Heists an hour ago | malware.news
analysis apts cluster components +19
Monthly Threat Report May 2024: Satya Nadella’s Statement on Security, and a New UK Law … 2 hours ago | malware.news
commentary current cybersecurity data +18
Analyzing Synology Disks on Linux, (Wed, May 8th) 3 hours ago | malware.news
devices disk goes linux +13
Austrian scammers escape investors, but not law enforcement 3 hours ago | malware.news
10 million cryptocurrencies cryptocurrency currency +14
Ghidra Font Size for Presentations 4 hours ago | malware.news
assembly comedy components engineering +12
ISC Stormcast For Wednesday, May 8th, 2024 https://isc.sans.edu/podcastdetail/8972, (Wed, May 8th) 5 hours ago | malware.news
topic
RSAC SW Live Stream 7 hours ago | malware.news
topic
CHM Malware Stealing User Information Being Distributed in Korea 9 hours ago | malware.news
ahnlab asec center change +13

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Network Security Analyst

@ Wiz | Tel Aviv
View on infosec-jobs.com

Penetration Testing Staff Engineer- Turkey Remote

@ SonicWall | Istanbul, Istanbul, Türkiye
View on infosec-jobs.com

Physical Security Engineer

@ Microsoft | Atlanta, Georgia, United States
View on infosec-jobs.com

Junior Security Consultant (m/w/d)

@ Deutsche Telekom | Berlin, Deutschland
View on infosec-jobs.com

Senior Cybersecurity Product Specialist - Security Endpoint Protection

@ Pacific Gas and Electric Company | San Ramon, CA, US, 94583
View on infosec-jobs.com

Security Engineer, Pre-Sales (PA/NJ)

@ Vectra | US - South New Jersey, US - Pennsylvania
View on infosec-jobs.com
View more jobs