AsyncRAT loader: Obfuscation, DGAs, decoys and Govno
released on 2023-12-19 @ 10:04:41 AM
AT&T Alien Labs has identified a campaign to deliver AsyncRAT onto unsuspecting victim systems. During at least 11 months, this threat actor has been working on delivering the RAT through an initial JavaScript file, embedded in a phishing page. After more than 300 samples and over 100 domains later, the threat actor is persistent in their intentions.