From infostealer to full RAT: dissecting the PureRAT attack chain

(520) 462-0516

From infostealer to full RAT: dissecting the PureRAT attack chain

An investigation into what appeared at first glance to be a “standard” Python-based infostealer campaign took an interesting turn when it was discovered to culminate in the deployment of a full-featured, commercially available remote access trojan (RAT) known as PureRAT. Author: AlienVault

Related Tags:
netloader

cryptoloader

pxa stealer

lonenone

PXA

PureRAT

purecrypter

PureLogs

service

Associated Indicators:
F5E9E24886EC4C60F45690A0E34BAE71D8A38D1C35EB04D02148CDB650DD2601

F6ED084AAA8ECF1B1E20DFA859E8F34C4C18B7AD7AC14DC189BC1FC4BE1BD709

FFD6F164C9F9248604E819B7B584C9D2907C967D

8697103BED75B09DF59D9BB3A86ECA32

https://paste.rs/fVmzS

https://0x0.st/8WBr.py

https://is.gd/s5xknuj2

157.66.26.209

Threat Intel Solutions

From infostealer to full RAT: dissecting the PureRAT attack chain

Search

Popular Posts

Dangerous runC flaws could allow hackers to escape Docker containers

Lost iPhone? Don’t fall for phishing texts saying it was found

NAKIVO Introduces v11.1 with Upgraded Disaster Recovery and MSP Features

Categories

Pages

Archives

Tags

Follow Us