Summary: A sophisticated new malware family named ResolverRAT has emerged, primarily targeting organizations in the healthcare and pharmaceutical sectors. This advanced malware utilizes in-memory execution, layered evasion techniques, and complex infrastructure to evade detection and facilitate attacks via phishing emails. Researchers assert that despite some similarities to prior malware campaigns, ResolverRAT represents a distinct threat due to its unique operational characteristics and methods.
Affected: Healthcare and pharmaceutical organizations
Keypoints :
- ResolverRAT employs fear-based phishing tactics to trick users into executing the malware.
- The malware implements advanced evasion techniques including DLL hijacking and compressed, encrypted payloads.
- Its command-and-control mechanisms support robust tracking of individual infections, utilizing a parallel trust system and sophisticated communication protocols.
Source: https://www.securityweek.com/new-resolverrat-targeting-healthcare-pharmaceutical-organizations/
Views: 9