← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
Nearly undetectable Qarallax RAT spreading via spam
WHITE AlienVault 2018-01-04 Modified: 2018-01-04
15
IOCs
MEDIUM VOLUME
Qarallax is a RAT (remote access tool) and infostealer. This malware was born from an open-source software known LaZagne.
Indicators of Compromise (1 / 15 total)
All URL FileHash-SHA256 hostname FileHash-MD5 FileHash-SHA1
TYPEINDICATORDESCRIPTIONCREATED
URL https://vvrhhhnaijyj6s2m.onion.top/storage/cryptoutput/0.10166600%201512473882.jar 2018-01-04
References (1)
↗ http://www.certego.net/en/news/nearly-undetectable-qarallax-rat-spreading-via-spam/