MIMICRAT: ClickFix Campaign Delivers Custom RAT via Compromised Legitimate Websites

www.elastic.co

cross-posted to:
cybersecurity@sh.itjust.works

MIMICRAT: ClickFix Campaign Delivers Custom RAT via Compromised Legitimate Websites

www.elastic.co

digicatM to

blueteamsecEnglish · 6 days ago

cross-posted to:
cybersecurity@sh.itjust.works

MIMICRAT: ClickFix Campaign Delivers Custom RAT via Compromised Legitimate Websites — Elastic Security Labs

www.elastic.co

Elastic Security Labs uncovered a ClickFix campaign using compromised legitimate sites to deliver a five-stage chain ending in MIMICRAT, a custom native C RAT with malleable C2, token theft, and SOCKS5 tunneling.

You must log in or # to comment.

Chat

blueteamsec

Create a post

You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: !blueteamsec@infosec.pub

For [Blue|Purple] Teams in Cyber Defence - covering discovery, detection, response, threat intelligence, malware, offensive tradecraft and tooling, deception, reverse engineering etc.

Visibility: Public

This community can be federated to other instances and be posted/commented in by their users.

32 users / day
149 users / week
378 users / month
970 users / 6 months
228 local subscribers
642 subscribers
2.5K Posts
205 Comments
Modlog

mods:
digicat