Discover Hacks/Cracks News

Stealthy Malware Distribution Involves Polyglot Files

Anthony Pell

1 min read Jan 19, 2023

Threat actors have been leveraging polyglot and malicious Java archive files to distribute the StrRAT and Ratty remote access trojans to evade detection by security solutions, The Hacker News reports.

Deep Instinct researchers discovered that the StrRAT payload has been deployed in a campaign leveraging both JAR and MSI file formats, indicating potential execution via Windows and Java Runtime Environments.

Meanwhile, a separate campaign involved the deployment of StrRAT and Ratty using the CAB and JAR polyglots, with URL shortening services rebrand.ly and cutt.ly leveraged to spread the artifacts, according to the report.

Read this full article at SC Media

Discover Hacks/Cracks News

Stealthy Malware Distribution Involves Polyglot Files

Anthony Pell

Nood RAT Malware Attacks Linux Servers, Threatens Sensitive Data

Ubuntu Tool Could Trick Users Into Installing Rogue Packages

Danger in the Python Package Index: Malicious Code Lurking in PyPI

LinuxSecurity Poll

Why do you use a VPN on Linux?

Get the Latest News & Insights

News

Advisories

HOWTOs

Features

About Us

Powered By

Discover Hacks/Cracks News

Stealthy Malware Distribution Involves Polyglot Files

Anthony Pell

Related Articles

Get the Latest News & Insights

Nood RAT Malware Attacks Linux Servers, Threatens Sensitive Data

Ubuntu Tool Could Trick Users Into Installing Rogue Packages

Danger in the Python Package Index: Malicious Code Lurking in PyPI

LinuxSecurity Poll

Why do you use a VPN on Linux?

Get the Latest News & Insights

News

Advisories

HOWTOs

Features

About Us

Powered By