‘DarkWatchman’ RAT Shows Evolution in Fileless Malware

16 December 2021

A novel remote access trojan (RAT) being distributed via a Russian-language spear-phishing campaign is using unique manipulation of Windows Registry to evade most security detections, demonstrating a significant evolution in fileless malware techniques. Dubbed DarkWatchman, the RAT – discovered by researchers at Prevailion’s Adversarial Counterintelligence Team (PACT) – uses the registry on Windows systems for nearly all temporary storage on a machine and thus never writes anything to disk.

Read full article on Threat Post

Date:

16 December 2021

Categorie(s):

NEWS

Tag(s):

Evolution, Fileless Malware, Malware, RAT, Web Security

China-Linked ‘Muddling Meerkat’ Hijacks DNS to Map Internet on Global Scale29 April 2024
UK enacts IoT cybersecurity law29 April 2024
Ten years of Heartbleed: Lessons learned29 April 2024
Grafana Tool Vulnerability Let Attackers Inject SQL Queries29 April 2024
France willing to buy key Atos assets to keep them French29 April 2024