2025-03-10 (MONDAY): REMCOS RAT INFECTION

NOTES:

• Zip files are password-protected.  Of note, this site has a new password scheme.  For the password, see the "about" page of this website.

REFERENCES:

• https://www.linkedin.com/posts/unit42_remcos-rat-keylogger-activity-7304958245322768385-tu-a/
• https://x.com/Unit42_Intel/status/1899192623966867511
• https://github.com/PaloAltoNetworks/Unit42-timely-threat-intel/blob/main/2025-03-10-IOCs-for-Remcos-RAT-activity.txt

ASSOCIATED FILES:

• 2025-03-10-Remcos-RAT-infection-traffic.pcap.zip   18.7 MB   (18,690,478 bytes)
• 2025-03-10-email-and-malware-from-Remcos-RAT-infection.zip   2.2 MB   (2,195,920 bytes)

 

Click here to return to the main page.