Hacking
203

New STRRAT RAT Phishing Campaign






  22-Jan-2022 02:02:58



STRRAT is a multi-capability Remote Access Trojan that dates to at least mid-2020. Unusually, it is Java-based and is typically delivered via phishing email to victims. Like most phishing attacks, previous STRAAT campaigns have used an intermediate dropper attached to the email that downloads the final payload when opened. This sample dispenses with that tactic and instead attaches the final payload directly to the phishing email.

REFERENCE:
https://www.fortinet.com/blog/threat-research/new-strrat-rat-phishing-campaign
MALWARE FAMILY:
STRRAT
ATT&CK IDS:
T1056 - Input CaptureT1193 - Spearphishing AttachmentT1137.001 - Office Template MacrosT1071 - Application Layer ProtocolT1219 - Remote Access SoftwareT1119 - Automated Collection


email shipping@acalpulps.com

email exports@ftqplc.in

URL http://jbfrost.live/strigoi/server/?hwid=1&lid=m&ht=5


DISCUSSION
Nothing comment here :(
Login for comment and discussion.
Login Here
Sponsored

Oppss... No sponsors yet

Popular Posts
Complete Basic Course in Kali...
Djie sam soe Djie sam soe
Linux
10386
2
Top

Gps Tracker Seccodeid Free Too...
Djie sam soe Djie sam soe
General
7258
167
Top

Free Proxy List
Sandidi Sandidi
Networking
3071
3
Top

Mass Reverse IP Unlimited
ImamWawe ImamWawe
Tools Hacking
2376
12
Top

Report McAfee Antivirus Hurrri...
Indrasp Indrasp
Windows
1708
93
Top

Related Post

Youtube Video

Subscribe