2025-02-18 (TUESDAY): SMARTAPESG SCRIPT FOR FAKE BROWSER UPDATE LEADS TO NETSUPPORT RAT AND STEALC

NOTES:

• Zip files are password-protected.  Of note, this site has a new password scheme.  For the password, see the "about" page of this website.

REFERENCES:

• https://www.linkedin.com/posts/unit42_smartapesg-netsupportrat-stealc-activity-7297994624814432256-HOrX/
• https://x.com/Unit42_Intel/status/1892229005702471868
• https://github.com/PaloAltoNetworks/Unit42-timely-threat-intel/blob/main/2025-02-18-IOCs-for-SmartApeSG-fake-browser-update-leads-to-NetSupport-RAT-and-StealC.txt

ASSOCIATED FILES:

• 2025-02-18-IOCs-for-SmartApeSG-fake-browser-update-leads-to-NetSupport-RAT-and-StealC.txt.zip   2.0 kB   (2,041 bytes)
• 2025-02-18-SmartApeSG-leads-to-NetSupport-RAT-and-StealC.pcap.zip   18.0 MB   (17,964,603 bytes)
• 2025-02-18-malware-and-artifacts.zip   11.3 MB   (11,279,805 bytes)

 

Click here to return to the main page.