China-Linked ValleyRAT Malware Resurfaces with Advanced Data Theft Tactics
Cybersecurity researchers have uncovered an updated version of malware called ValleyRAT that’s being distributed as part of a new campaign.
“In the latest version, ValleyRAT introduced new commands, such as capturing screenshots, process filtering, forced shutdown, and clearing Windows event logs,” Zscaler ThreatLabz researchers Muhammed Irfan V A and Manisha Ramcharan Prajapati said.
ValleyRAT
2024-06-11 08:47:00
News
Edward Snowden’s IoCs
Edward Snowden’s IoCs I’m retiring. Personal domain: hxxp://lavabit.com Personal email address account: Ed_Snowden@lavabit.com edsnowden@lavabit.com Lavabit’s BitCoin address: 1Bqqy3SxZ27ZUogEeiKHYqPsmFwuRTErMu Known domain registration: hxxp://ismtgoxsolvent.com – 97.74.42.79; 50.63.202.93 Possible related domain registrations: hxxp://mtgox-creditors.com hxxp://mtgox-prod.net hxxp://mtgox-reabilitation.com hxxp://mtgox-rehabilitation.com hxxp://mtgox-claim.xyz – Read more…
0 Comments