Microsoft Alerts on New RAT Loader Malware
May 14, 2021 11:28 GMT
·
Comment
Snip3 Malware
Microsoft emitted an alert regarding a Remote Access Tool (RAT) dubbed RevengeRAT. The malware has been used to send out spear-phishing emails targeting aerospace and travel industries.
RevengeRAT, also known as AsyncRAT, is distributed by carefully crafted email messages that instruct recipients to open a file that looks like an Adobe PDF attachment but actually installs a malicious visual basic (VB) file.
Morphisec, a cybersecurity organization, recently identified the two malware as part of a sophisticated Crypter-as-a-Service that pushes several RAT families.
Microsoft states that phishing emails spread a loader that delivers RevengeRAT or AsyncRAT. Besides, Morphisec says it also pushes the RAT Agent Tesla.