Welcome to our

Cyber Security News Aggregator

.

Cyber Tzar

provide a

cyber security risk management

platform; including automated penetration tests and risk assesments culminating in a "cyber risk score" out of 1,000, just like a credit score.

[SANS ISC] Remcos RAT Delivered Through Double Compressed Archive

published on 2022-02-18 12:27:07 UTC by Xavier
Content:

I published the following diary on isc.sans.edu: “Remcos RAT Delivered Through Double Compressed Archive“:

One of our readers shared an interesting sample received via email. Like him, if you get access to interesting/suspicious data, please share it with us (if you’re authorized of course). We are always looking for fresh meat! The file was received as an attachment to a mail that pretended to be related to a purchase order. The file was called “P0-65774383__pdf.tar.lz” (SHA256:ea91dc0fdd99aab9e990b6520c136fc2f0c19b4ba82691ceef853ad4a86c0141). Note the double extension; it can be processed with lunzip on REMnux… [Read more]

The post [SANS ISC] Remcos RAT Delivered Through Double Compressed Archive appeared first on /dev/random.

Article: [SANS ISC] Remcos RAT Delivered Through Double Compressed Archive - published almost 3 years ago.

https://blog.rootshell.be/2022/02/18/sans-isc-remcos-rat-delivered-through-double-compressed-archive/   
Published: 2022 02 18 12:27:07
Received: 2022 02 22 12:25:29
Feed: /dev/random
Source: /dev/random
Category: Cyber Security
Topic: Cyber Security
Views: 2

Custom HTML Block

Click to Open Code Editor