Trending

#sectoprat

Latest posts tagged with #sectoprat on Bluesky

Latest Top
Trending
#MJF Tribute #Javier Bardem #WBC #Marty Supreme #Jessie Buckley #Andrade #Academy Awards #MBJ #Autumn Durald Arkapaw #Wallace #MJF Tribute #Javier Bardem #WBC #Marty Supreme #Jessie Buckley #Andrade #Academy Awards #MBJ #Autumn Durald Arkapaw #Wallace

Posts tagged #sectoprat

Hasamba
Hasamba
@hasamba72.bsky.social
5 months ago

Fake EarthTime installer dropped SectopRAT; operators used SystemBC proxy, Betruger backdoor, AdFind/SharpHound recon, RDP/Impacket lateral moves and exfil via WinSCP to cloud FTP. #ransomware #sectoprat #systembc https://bit.ly/469Rcjz

0 0 0 0
@matricedigitale.bsky.social
6 months ago
Post image

TAG-150 evolve CastleLoader in CastleRAT con C2 multi-tier: ClickFix, GitHub fraudolenti e payload SectopRAT/WarmCookie colpiscono utenti e aziende.

#CastleLoader #CastleRAT #ClickFix #MaaS #sectoprat #TAG150 #WarmCookie
www.matricedigitale.it/2025/09/05/c...

0 0 0 0
Julian-Ferdinand Vögele
Julian-Ferdinand Vögele
@julianferdinand.bsky.social
6 months ago

6/ TAG-150 also deploys other malware families, including #SectopRAT, #WarmCookie, #HijackLoader, and #NetSupportRAT, as well as numerous stealers: #Stealc, #RedLine, #Rhadamanthys, #DeerStealer, #MonsterV2, and more.

1 0 1 0
Brad
Brad
@malware-traffic-analysis.net
7 months ago
An image displaying the URL chain followed to get the initial zip archive downloaded for this infection.

An image displaying the URL chain followed to get the initial zip archive downloaded for this infection.

An image displaying the extractioin chain to get the malicious setup files that installed Lumma Stealer.

An image displaying the extractioin chain to get the malicious setup files that installed Lumma Stealer.

Traffic from the infection filtered in Wireshark.

Traffic from the infection filtered in Wireshark.

SectopRAT persistent on an infected Windows host.

SectopRAT persistent on an infected Windows host.

2025-08-15 (Friday): Information from a social media post I wrote for my employer about a #LummaStealer infection leading to #SectopRAT (#ArechClient2). A #pcap of the infection traffc, along with the associated #malware and artifacts are available at www.malware-traffic-analysis.net/2025/08/15/i...

4 3 0 0
@abuse-ch.bsky.social
7 months ago
Fake gaming website leading to LummaStealer download

Fake gaming website leading to LummaStealer download

We've observed an interesting infection chain ⛓️ in the wild, starting with #LummaStealer spread through a fake gaming website and resulting in #Latrodectus and #SectopRat 🪲🔍👀

See below for more...

5 3 1 0
Brad
Brad
@malware-traffic-analysis.net
8 months ago
Traffic from an infection filtered in Wireshark.

Traffic from an infection filtered in Wireshark.

2025-07-15 (Tuesday): #LummaStealer infection with #SecTopRAT. A #pcap of the #Lumma traffic and #SecTop #RAT activity, the #malware / artifacts from an infection, and the associated IOCs are available at www.malware-traffic-analysis.net/2025/07/15/i...

7 3 0 0
ReconBee
ReconBee
@reconbee.bsky.social
8 months ago
Preview
Hackers Use Leaked Shellter Tool License to Spread Lumma Stealer and SectopRAT Malware spread SectopRAT read more about Hackers Use Leaked Shellter Tool License to Spread Lumma Stealer and SectopRAT Malware

Hackers Use Leaked Shellter Tool License to Spread Lumma Stealer and SectopRAT Malware reconbee.com/hackers-use-...

#hackers #leakedshelltertool #lummasteale #SectopRAT #malware #malwareattack #cyberattack

0 0 0 0
TechNadu
TechNadu
@technadu.com
11 months ago
Preview
Fake Zoom Installer Deploys BlackSuit Ransomware in Enterprise-Targeted Attack Enterprise networks were targeted in a campaign that involved SectopRAT and the deployment of BlackSuit ransomware via a trojanized Zoom installer.

Enterprise networks were targeted in a campaign that involved SectopRAT and the deployment of BlackSuit ransomware via a trojanized Zoom installer.

#Ransomware #BlackSuit #SectopRAT #Zoom #Malware

0 0 0 0
Craig Casburn
Craig Casburn
@r0kthecasbah.bsky.social
11 months ago
Preview
I Am Not A Robot Since our last report, threat groups have refined ClickFix social engineering tactics. We analyse a new variant that presents as a Cloudflare turnstile challenge.

4/7 A previous investigation shows the third-stage domain redirects to kdfmmikfkafjikmfikfjhm[.]com. And the MSI results in the deployment of #SectopRAT

www.inde.nz/blog/i-am-no...

Pivoting on this redirect revealed another downlfkzfoqkajada[.]com

0 0 1 0
Jérôme Segura
Jérôme Segura
@jeromesegura.com
1 year ago
Post image

SecTopRAT bundled in Chrome installer distributed via Google Ads

📖
www.malwarebytes.com/blog/news/20...

⚠️
sites[.]google[.]com/view/gfbtechd/
chrome[.]browser[.]com[.]de/GoogleChrome.exe

#malvertising #SecTopRAT

2 0 0 0
Cipher Tech Solutions
Cipher Tech Solutions
@ciphertech.bsky.social
1 year ago

April ACCE Release Notes are live. Check the latest updates at www.ciphertechsolutions.com/acce-release... #ComeBacker #SectopRAT #Cinoshi #SolanStealer

0 0 0 0
Rene Robichaud
Rene Robichaud
@neroqc.bsky.social
1 year ago
Preview
Bing ad for NordVPN leads to SecTopRAT | Malwarebytes Threat actors are luring victims to a fake NordVPN website that installs a Remote Access Trojan.

Bing ad for NordVPN leads to SecTopRAT
www.malwarebytes.com/blog/threat-...
#Infosec #Security #Cybersecurity #CeptBiro #BingAd #NordVPN #SecTopRAT

0 0 0 0