all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Redline Stealer: A Novel Approach

Add to bookmarks
April 17, 2024, 6:20 p.m. | MalBot

Malware Analysis, News and Indicators - Latest topics malware.news



A new packed variant of the Redline Stealer trojan was observed in the wild, leveraging Lua bytecode to perform malicious behavior.


McAfee telemetry data shows this malware strain is very prevalent, covering North America, South America, Europe, and Asia and reaching Australia.


Infection Chain


 



  • GitHub is being abused to host the malware file at Microsoft’s official account in the vcpkg repository https[:]//github[.]com/microsoft/vcpkg/files/14125503/Cheat.Lab.2.7.2.zip




  • McAfee Web Advisor blocks access to this malicious download

  • Cheat.Lab.2.7.2.zip is a zip file with hash 5e37b3289054d5e774c02a6ec4915a60156d715f3a02aaceb7256cc3ebdc6610

  • The …

america asia australia bytecode data europe file github host infection infection chain in the wild lua malicious malicious behavior malware mcafee microsoft north north america novel prevalent redline redline stealer south south america stealer telemetry trojan

Visit resource

More from malware.news / Malware Analysis, News and Indicators - Latest topics

Stolen Citrix Credentials Led to Change Ransomware Attack an hour ago | malware.news
access attack authentication ceo +23
AI, Okta, Chrome, Quantum, Kaiser Permanente, FTC, FCC, NCSC, Josh Marpet, and more. - SWN … an hour ago | malware.news
article chrome fcc ftc +9
Navigating the cybersecurity career maze 2 hours ago | malware.news
article career careers cyber +12
The Top 11 Legal Industry Cyber Attacks 2 hours ago | malware.news
addition attack attacks breach +13
Sophos named a Leader in the 2024 IDC MarketScape for Worldwide Managed Detection and Response … 3 hours ago | malware.news
and response article business capabilities +14
Another Day, Another NAS: Attacks against Zyxel NAS326 devices CVE-2023-4473, CVE-2023-4474, (Tue, Apr 30th) 3 hours ago | malware.news
article attacks cve devices +13
LABScon23 Replay | From Vulkan to Ryazan – Investigative Reporting from the Frontlines of Infosec 3 hours ago | malware.news
called campaigns companies critical +19
Defending infrastructure, securing systems key to CISA's new AI guidelines 3 hours ago | malware.news
article artificial artificial intelligence benefits +14
Announcing the General Availability of Spectra Detect v5.0: Enhancing File Analysis for Advanced Threat Detection 5 hours ago | malware.news
advanced advanced threat advanced threat detection analysis +22

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Information Security Engineer - Vulnerability Management

@ Starling Bank | Southampton, England, United Kingdom
View on infosec-jobs.com

Manager Cybersecurity

@ Sia Partners | Rotterdam, Netherlands
View on infosec-jobs.com

Compliance Analyst

@ SiteMinder | Manila
View on infosec-jobs.com

Information System Security Engineer (ISSE)-Level 3, OS&CI Job #447

@ Allen Integrated Solutions | Chantilly, Virginia, United States
View on infosec-jobs.com

Enterprise Cyber Security Analyst – Advisory and Consulting

@ Ford Motor Company | Mexico City, MEX, Mexico
View on infosec-jobs.com
View more jobs