Operation Silent Watch: Desktop Surveillance in Azerbaijan and Armenia | allinfosecnews.com

Feb. 16, 2023, 11 a.m. | MalBot

Malware Analysis, News and Indicators - Latest topics malware.news

Executive summary

Amid rising tensions between Azerbaijan and Armenia over the Lachin corridor in late 2022, Check Point Research identified a malicious campaign against entities in Armenia. The malware distributed in this campaign is a new version of a backdoor we track as OxtaRAT, an AutoIt-based tool for remote access and desktop surveillance.

Key findings:

The newest version of OxtaRAT is a polyglot file, which combines compiled AutoIT script and an image. The tool capabilities include searching for and exfiltrating …

access armenia autoit azerbaijan backdoor campaign check check point desktop distributed entities executive findings key malicious malware point polyglot remote access research rising rising tensions script silent surveillance tool version watch

More from malware.news / Malware Analysis, News and Indicators - Latest topics

Change Healthcare hasn't given VA details on hack-impacted veterans, top lawmaker says 16 hours ago | malware.news

change change healthcare hack healthcare +4

Two years in, Google says passkeys now protect more than 400 million accounts 16 hours ago | malware.news

account accounts article google +7

CVE-2024-2887: A Pwn2Own Winning Bug in Google Chrome 17 hours ago | malware.news

blog browsers bug chrome +19

How to Talk to The Board About Exposure 17 hours ago | malware.news

Pro-Russia hackers target OT weaknesses in critical infrastructure 17 hours ago | malware.news

american article breaches critical +21

Watch out for tech support scams lurking in sponsored search results 17 hours ago | malware.news

blog blog post campaign home +12

Threat Intelligence Snapshot: Week 18, 2024 17 hours ago | malware.news

access amp april find +13

CISA: Immediate GitLab account takeover flaw remediation crucial amid attacks 18 hours ago | malware.news

account account takeover agency article +30

Increased stealth introduced in updated Zloader malware 18 hours ago | malware.news

analysis anti-analysis article banking +18

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote

View on infosec-jobs.com

Data Privacy Manager m/f/d)

@ Coloplast | Hamburg, HH, DE

View on infosec-jobs.com

Cybersecurity Sr. Manager

@ Eastman | Kingsport, TN, US, 37660

View on infosec-jobs.com

KDN IAM Associate Consultant

@ KPMG India | Hyderabad, Telangana, India

View on infosec-jobs.com

Learning Experience Designer in Cybersecurity (f/m/div.) (Salary: ~113.000 EUR p.a.*)

@ Bosch Group | Stuttgart, Germany

View on infosec-jobs.com

Senior Security Engineer - SIEM

@ Samsara | Remote - US

View on infosec-jobs.com