← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
Nearly undetectable Qarallax RAT spreading via spam
WHITE AlienVault 2018-01-04 Modified: 2018-01-04
15
IOCs
MEDIUM VOLUME
Qarallax is a RAT (remote access tool) and infostealer. This malware was born from an open-source software known LaZagne.
Indicators of Compromise (2 / 15 total)
All URL FileHash-SHA256 hostname FileHash-MD5 FileHash-SHA1
TYPEINDICATORDESCRIPTIONCREATED
hostname vvrhhhnaijyj6s2m.onion.casa 2018-01-04
hostname vvrhhhnaijyj6s2m.onion.top 2018-01-04
References (1)
↗ http://www.certego.net/en/news/nearly-undetectable-qarallax-rat-spreading-via-spam/