#asyncrat

[ follow ]
#deadvax #ipfs-hosted-vhd #in-memory-shellcode-injection #connectwise-screenconnect
Information security
fromThe Hacker News
2 hours ago

DEAD#VAX Malware Campaign Deploys AsyncRAT via IPFS-Hosted VHD Phishing Files

DEAD#VAX uses IPFS-hosted VHDs, heavy script obfuscation, runtime decryption, and in-memory AsyncRAT shellcode injection to evade detection and avoid disk artifacts.
Information security
fromThe Hacker News
4 months ago

AsyncRAT Exploits ConnectWise ScreenConnect to Steal Credentials and Crypto

Threat actors abuse ConnectWise ScreenConnect to deploy a script-based loader that installs AsyncRAT and maintains persistence via a fake 'Skype Updater' scheduled task.
Information security
fromTechzine Global
4 months ago

Fileless malware: old tricks for new attacks

Fileless AsyncRAT persists via abused legitimate RMM ScreenConnect, in-memory loaders, encrypted reinstall mechanisms, and %AppData% hiding, targeting passwords and crypto wallets.
Information security
fromThe Hacker News
6 months ago

AsyncRAT's Open-Source Code Sparks Surge in Dangerous Malware Variants Across the Globe

AsyncRAT is a widely used remote access trojan that has evolved into a significant threat due to its open-source nature and modular architecture.
[ Load more ]