Parasite HTTP RAT Packs Extensive Protection Mechanisms

Discussion in '0-day Release' started by silversurfer, Jul 27, 2018.

  1. silversurfer

    silversurfer Malware Tester Silver Member

    A newly discovered remote access Trojan (RAT) dubbed Parasite HTTP includes a broad range of protections, including sandbox detection, anti-debugging, anti-emulation, and more, Proofpoint reports.

    Dubbed Parasite HTTP, the malware is being advertised on an underground forum and has already been used in an infection campaign. Courtesy of a modular architecture, the malware’s capabilities can be expanded with the addition of new modules after infecting a system.

    The threat was recently used in a small email campaign targeting recipients primarily in the information technology, healthcare, and retail industries. The emails contained Microsoft Word attachments with malicious macros designed to download the RAT from a remote site.

    Full Article: https://www.securityweek.com/parasite-http-rat-packs-extensive-protection-mechanisms
     
    Der.Reisende and RGiskardR like this.
  2. Google Adsense

Share This Page