Posted 1/7/2024, 4:36:46 PM
Sophisticated Hacking Campaign Targets US Infrastructure with Stealthy Malware for Nearly a Year
- Stealthy campaign active for 11 months delivering AsyncRAT malware to select US infrastructure targets
- Carefully crafted infection chain starts with email attachment leading to downloader scripts that check if victim is eligible
- Leverages cryptocurrency payments, sandboxes evasion techniques, and weekly-regenerated domains for stealth
- 300+ unique malware loader samples observed over time, with alterations to code and variables
- Campaign infrastructure allows prediction of C2 domains years into future, indicating sophistication of threat actors