SeroXen RAT distributed via malicious NuGet package

13 October 2023

Threat actors have targeted .NET developers with a malicious NuGet package typosquatting the Pathoschild.Stardew.ModBuildConfig deploying the SeroXen RAT, The Hacker News reports. Attacks commence with a PowerShell script downloading a Windows Batch script, which would then execute code that would eventually prompt distribution of SeroXen RAT, a fileless trojan featuring Quasar RAT, r77 rootkit, and NirCmd command-line tool capabilities, according to a Phylum report.

Source: SC Magazine

Date:

13 October 2023

Categorie(s):

NEWS

Tag(s):

IT, News, NuGet, RAT

News live: Australia confers with New Zealand on Rafah and looming UN vote; Lehrmann trial costs decision due Friday8 May 2024
Alleged LockBit admin and lead developer named and targeted by US, UK and Australian authorities8 May 2024
RSAC 2024: Outfoxing SSO: Bypassing modern authentication8 May 2024
America’s War on Drugs and Crime will be AI powered, says Homeland Security boss8 May 2024
Alleged LockBit admin and lead developer named and targeted by US, UK and Australian authories8 May 2024