X-Industry

pyinstaller (2)

PyInstaller and AMSI Patching to Deliver XWorm RAT v7.4

Cybersecurity researchers at Point Wild recently found a new way that cyber-attackers are gaining unauthorized access to computers. The investigation, led by experts Kedar Shashikant Pandit, Prathamesh Shingare, and Amol Swami from the Lat61 Threat Intelligence Team, reveals that a common tool used by legitimate developers is being twisted by hackers to hide a nasty malware called XWorm.

Attack Details - The attack starts with a trick email or a fake software update, involving a harmless-lookin

Weekly Cyber Intel Report - All Sector 05 06 2022

Activity Summary - Week Ending on 6 May 2022:

Red Sky Alliance identified 43,915 connections from new IP’s checking in with our Sinkholes
msk.ru still #1 in Hits
Analysts identified 1,442 new IP addresses participating in various Botnets
CVSS
Using Emulation
BotenaGo Variant
PyInstaller
Inmarsat
5 Constant Malware Issues

Link to full report: IR-22-126-001_weekly126.pdf

#xg { position:relative;top:120px; } #xn_bar { top:120px; }

Hello, you need to enable JavaScript to use Red Sky Alliance.

Please check your browser settings or contact your system administrator.

Activity Summary - Week Ending on 6 May 2022:

Note: this page contains paid content.