Common Information
| Type | Value |
|---|---|
| Value |
xRAT |
| Category | Tool |
| Type | Mitre-Tool |
| Misp Type | Cluster |
| Description | [QuasarRAT](https://attack.mitre.org/software/S0262) is an open-source, remote access tool that has been publicly available on GitHub since at least 2014. [QuasarRAT](https://attack.mitre.org/software/S0262) is developed in the C# language.(Citation: GitHub QuasarRAT)(Citation: Volexity Patchwork June 2018) |
| Details | Published | Attributes | CTI | Title | ||
|---|---|---|---|---|---|---|
| Details | Website | 2023-11-01 | 15 | 绿盟威胁情报月报-2023年10月 – 绿盟科技技术博客 | ||
| Details | Website | 2023-10-30 | 91 | 安全事件周报 2023-10-23 第43周 - 360CERT | ||
| Details | Website | 2023-10-24 | 0 | QuasarRAT Deploys Advanced DLL Side-Loading Technique - RedPacket Security | ||
| Details | Website | 2023-10-24 | 12 | Quasar RAT IOCs - Part 5 - SEC-1275-1 | ||
| Details | Website | 2023-10-23 | 2 | QuasarRAT Deploys Advanced DLL Side-Loading Technique | ||
| Details | Website | 2023-10-23 | 2 | QuasarRAT Deploys Advanced DLL Side-Loading Technique | ||
| Details | Website | 2023-10-23 | 93 | 安全事件周报 2023-10-23 第43周 | ||
| Details | Website | 2023-10-23 | 10 | Risky Biz News: Cisco IOS XE hackers are hiding their tracks as patches come out | ||
| Details | Website | 2023-10-20 | 21 | Quasar RAT's Dual DLL Sideloading Technique | ||
| Details | Website | 2023-10-20 | 43 | 每周高级威胁情报解读(2023.10.20~10.26) | ||
| Details | Website | 2023-10-18 | 15 | Kimsuky APT IOCs - Part 16 - SEC-1275-1 | ||
| Details | Website | 2023-10-17 | 35 | Kimsuky Threat Group Uses RDP to Control Infected Systems - ASEC BLOG | ||
| Details | Website | 2023-10-16 | 35 | RDP를 이용해 감염 시스템을 제어하는 Kimsuky 위협 그룹 - ASEC BLOG | ||
| Details | Website | 2023-09-18 | 14 | Unpacking what's packed: DotRunPeX analysis | ||
| Details | Website | 2023-09-18 | 40 | Snip3 Crypter Reveals New TTPs Over Time | ||
| Details | Website | 2023-09-14 | 19 | Reverse engineering SuperBear RAT. | ||
| Details | Website | 2023-08-11 | 1 | Novel attack chain exploits open-source Freeze[.]rs tool | ||
| Details | Website | 2023-08-10 | 1 | New Attack Alert: Freeze[.]rs Injector Weaponized for XWorm Malware Attacks | ||
| Details | Website | 2023-08-10 | 1 | New Attack Alert: Freeze[.]rs Injector Weaponized for XWorm Malware Attacks - RedPacket Security | ||
| Details | Website | 2023-08-10 | 15 | Avast Q2/2023 Threat Report - Avast Threat Labs | ||
| Details | Website | 2023-08-09 | 38 | Attackers Distribute Malware via Freeze.rs And SYK Crypter | FortiGuard Labs | ||
| Details | Website | 2023-08-03 | 63 | 每周高级威胁情报解读(2023.08.03~08.10) | ||
| Details | Website | 2023-07-19 | 2 | Underground Fully UnDetectable (FUD) Crypter Market | ||
| Details | Website | 2023-07-14 | 35 | BlotchyQuasar: X-Force Hive0129 targeting financial intuitions in LATAM with a custom banking trojan | ||
| Details | Website | 2023-06-30 | 1 | Monthly Updates New Detection Rules, Increased Threat Coverage |