AdsExhaust, a Newly Discovered Adware MasqueradingOculus…
Essential information
- Published
- 24/06/2024 16:35
- Modified
- 24/06/2024 16:52
- Tags
- 2024-06-24 adsexhaust c2 server download phishing powershell urls
- Related entities
- 17 observables, 3 techniques (mitre)
Description
In June 2024, the eSentire Threat Response Unit (TRU) identified adware, which we have dubbed AdsExhaust, being distributed through a fake Oculus installer application. The adware is capable of exfiltrating screenshots from infected devices and interacting with browsers using simulated keystrokes.