New Java-Based Sayler RAT Targets Polish Speaking Users
Cyble Research and Intelligence Labs analyzes the New Java-based Sayler RAT, which specifically targets Polish-speaking users.
Remote Access Trojan
STRRAT’s Latest Version Incorporates Dual Obfuscation Layers
Key Takeaways • The blog highlights a new infection technique for distributing STRRAT version 1.6. It involves a spam email with a PDF attachment that, when opened, downloads a zip file containing the malicious JavaScript, which drops STRRAT. • STRRAT version 1.6 employs two string obfuscation techniques: “Zelix KlassMaster (ZKM)” and “Allatori”, making …
STRRAT’s Latest Version Incorporates Dual Obfuscation Layers Read More »
Sophisticated SiMay RAT Spreads Via Telegram Phishing Site
Keylogger and Gh0st RAT Variant deployed to spy on Users  Threat actors (TAs) have been relentlessly employing diverse techniques to propagate malware by leveraging counterfeit websites of renowned applications. Cyble Research and Intelligence Labs (CRIL) reported on a trojanized version of Telegram specifically aimed at Chinese users. Telegram is a widely used application, …
Sophisticated SiMay RAT Spreads Via Telegram Phishing Site Read More »
Trojanized Application Preying on TeamViewer Users
Cyble Research & Intelligence Labs analyzes a trojanized version of the TeamViewer application and how it distributes njRAT.
The Turkish Government Masqueraded Site Distributing Android RAT
CRIL analyzes the phishing campaign masquerading Turkish Government to distribute Android RAT with VNC and Keylogging feature.
Sophisticated DarkWatchMan RAT Spreads Through Phishing Sites
Cyble Research & Intelligence Labs analyzes DarkWatchman, a Remote Access Trojan that has been spreading via Phishing sites.