Stealthy SeroXen RAT malware increasingly used to target gamers

MuzzMelbourne

MuzzMelbourne

Level 15
Thread author
Verified
Top Poster
Well-known
Mar 13, 2022
543
3,921
1,369
Australia
Content source
https://www.bleepingcomputer.com/news/security/stealthy-seroxen-rat-malware-increasingly-used-to-target-gamers/
A stealthy remote access trojan (RAT) named 'SeroXen' has recently gained popularity as cybercriminals begin using it for its low detection rates and powerful capabilities.

AT&T reports that the malware is sold under the guise of a legitimate remote access tool for Windows 11 and 10 for $15/month or a single "lifetime" license payment of $60
Click to expand...
www.bleepingcomputer.com

Stealthy SeroXen RAT malware increasingly used to target gamers

A stealthy remote access trojan (RAT) named 'SeroXen' has recently gained popularity as cybercriminals begin using it for its low detection rates and powerful capabilities.
www.bleepingcomputer.com www.bleepingcomputer.com
 
  • Like
  • +Reputation
Reactions: Andy Ful, brambedkar59, [correlate] and 2 others
MuzzMelbourne said:
www.bleepingcomputer.com

Stealthy SeroXen RAT malware increasingly used to target gamers

A stealthy remote access trojan (RAT) named 'SeroXen' has recently gained popularity as cybercriminals begin using it for its low detection rates and powerful capabilities.
www.bleepingcomputer.com www.bleepingcomputer.com
Click to expand...

The Bleepingcomputer article uses the term "batch file" (embedded in ZIP archive) as an initial attack vector. For example:

The batch file extracts two binaries from base64 encoded text and loads them into memory using .NET reflection.
Click to expand...

More precisely, the batch file runs PowerShell, which can encode and load the malware into memory (using .NET reflection). The role of PowerShell is most important in the infection chain.
 
  • Like
Reactions: simmerskool, Gandalf_The_Grey, harlan4096 and 1 other person
You must log in or register to reply here.

You may also like...