Cybersecurity researchers have identified a sophisticated phishing campaign targeting users in Taiwan, delivering malware like HoldingHands RAT and Gh0stCringe. The campaign is associated with the Silver Fox APT group and uses multi-stage infection methods involving phishing emails, malicious PDFs, and advanced shellcode techniques. #Gh0stRAT #SilverFoxAPT
Keypoints
- The campaign impersonates government or business messages related to taxes, invoices, and pensions.
- Malware is delivered via phishing emails containing malicious PDFs or ZIP files with embedded shellcode.
- The infection sequence involves DLL sideloading, anti-VM tactics, and privilege escalation to bypass defenses.
- The final payload allows for remote control, information theft, and further malware deployment through command-and-control servers.
- Threat actors continuously adapt their malware techniques, using complex attack chains and evolving distribution strategies.
Read More: https://thehackernews.com/2025/06/silver-fox-apt-targets-taiwan-with.html