2017-12-06 - QUICK POST: EITEST HOEFLERTEXT POPUP PUSHES NETSUPPORT MANAGER RAT
NOTICE:
- The zip archives on this page have been updated, and they now use the new password scheme. For the new password, see the "about" page of this website.
ASSOCIATED FILES:
- 2017-12-06-fake-HoeflerText-font-pushes-NetSupport-Manager-RAT.pcap.zip 3.4 MB (3,447,450 bytes)
- 2017-12-06-fake-HoeflerText-font-pushes-NetSupport-Manager-RAT-malware-and-artifacts.zip 202.5 kB (202,490 bytes)
NOTES:
- For background, see the Sep 2017 Palo Alto Networks Unit 42 blog: EITest: HoeflerText Popups Targeting Google Chrome Users Now Push RAT Malware.
- Haven't done any decent write-ups on this in a while, but it's still much like I documented back on 2017-10-26.
- Nofication for today's activity came from this tweet by @killamjr.
Click here to return to the main page.