X-Industry

njrat (2)

Weekly Cyber Intel Report - All Sector 10 14 2022

Activity Summary - Week Ending on 14 October 2022:

Red Sky Alliance identified 26,570 connections from new IP’s checking in with our Sinkholes
Netskope IAD hit 56x
Analysts identified 556 new IP addresses participating in various Botnets
Bisamware and Chile Locker
njRat, a.k.a. Bladabindi
Emotet 2022
Singtel
Pinnacle Hack
Ukraine War
Optus Part II

Link to full report: IR-22-288-001_weekly288.pdf

Leveraging Microsoft Office Docs to Deliver Agent Tesla and njRat

Fortinet researchers recently found some malicious Microsoft Office documents that attempted to leverage legitimate websites, MediaFire and Blogger, to execute a shell script and then dropped two malware variants of Agent Tesla and njRat. Agent Tesla is a well-known spyware, first discovered in 2014, which can steal personal data from web browsers, mail clients, and FTP servers, collect screenshots and videos, and capture clipboard data. njRat (also known as Bladabindi) is a remote agent Troja

#xg { position:relative;top:120px; } #xn_bar { top:120px; }

Hello, you need to enable JavaScript to use Red Sky Alliance.

Please check your browser settings or contact your system administrator.

Activity Summary - Week Ending on 14 October 2022:

Note: this page contains paid content.