all InfoSec news
[QuickNote] Phishing email distributes WarZone RAT via DBatLoader
Malware Analysis, News and Indicators - Latest topics malware.news
I. Execution Flow Summary: Below is an illustrated and summarized way of how WarZone RAT sample infects the victim system via DBatLoader: II. Technical Analysis The attacker’s email sent to the user includes an attached .html file as follows: Observing the file PO-2200934-KINQTE.html in Hex mode, it appears to contain scripts and a large blob […]
Article Link: [QuickNote] Phishing email distributes WarZone RAT via DBatLoader | 0day in {REA_TEAM}
1 post - 1 participant
analysis attacker dbatloader email file flow hex html malware analysis mode phishing rat sample scripts system technical technical analysis victim warzone warzone rat