Tag: autoit

Attack reports, vulnerabilities, indicators and intrusion sets linked to autoit.

Attack reports (33)

• Reloaded in a modern Remcos RAT Infection · Published 30/05/2026 00:22 · Modified 01/06/2026 09:51
• Unmasking a Multi-Stage Loader: AutoIt Abuse Leading to Vidar Stealer Command-and-Control Communication · Published 11/05/2026 11:49 · Modified 11/05/2026 19:27
• How to uncover a Horabot campaign and detect this malware · Published 18/03/2026 11:15 · Modified 18/03/2026 16:52
• Analysis of the Spear-Phishing and KakaoTalk-Linked Threat Campaign · Published 18/03/2026 10:49 · Modified 18/03/2026 11:21
• Operation Poseidon: Spear-Phishing Attacks Abusing Google Ads Redirection Mechanisms · Published 18/01/2026 18:38 · Modified 19/01/2026 09:30
• Analysis of the Lumma infostealer · Published 27/11/2025 18:43 · Modified 21/12/2025 18:26
• Brazilian Campaign: Spreading the Malware via WhatsApp · Published 24/11/2025 12:02 · Modified 21/12/2025 17:59
• New Kimsuky Malware "EndClient RAT": Technical Report and IOCs · Published 07/11/2025 09:08 · Modified 07/11/2025 10:10
• Beyond Signatures: Detecting Lumma Stealer with an ML-Powered Sandbox · Published 25/09/2025 23:21 · Modified 26/09/2025 11:41
• AI-Driven Deepfake Military ID Fraud Campaign · Published 15/09/2025 08:00 · Modified 15/09/2025 19:43
• CastleLoader Analysis · Published 13/08/2025 11:57 · Modified 13/08/2025 15:47
• Spear Phishing Campaign Delivers VIP Keylogger via Email Attachment · Published 30/07/2025 15:08 · Modified 30/07/2025 15:20
• Fix the Click: Preventing the ClickFix Attack Vector · Published 10/07/2025 17:53 · Modified 13/07/2025 11:26
• How a Malicious Excel File (CVE-2017-0199) Delivers the FormBook Payload · Published 05/06/2025 22:36 · Modified 08/06/2025 16:35
• RAT Dropped By Two Layers of AutoIT Code · Published 19/05/2025 09:36 · Modified 21/05/2025 21:47
• DarkCloud Stealer: Comprehensive Analysis of a New Attack Chain That Employs AutoIt · Published 14/05/2025 16:58 · Modified 21/05/2025 20:05
• How Lumma Stealer sneaks into organizations · Published 21/04/2025 17:31 · Modified 21/04/2025 22:51
• Cascading Shadows: An Attack Chain Approach to Avoid Detection and Complicate Analysis · Published 16/04/2025 22:53 · Modified 17/04/2025 16:38
• A miner and the ClipBanker Trojan being distributed via SourceForge · Published 08/04/2025 19:06 · Modified 08/04/2025 22:10
• Remcos RAT Malware Disguised as Major Carrier's Waybill · Published 01/04/2025 14:47 · Modified 01/04/2025 17:27
• New wave of targeted attacks of the Angry Likho APT on Russian … · Published 24/02/2025 09:02 · Modified 24/02/2025 09:39
• Evolving Snake Keylogger Variant · Published 20/02/2025 08:49 · Modified 20/02/2025 08:58
• Increase in Distribution of AutoIt Compile Malware via Phishing Emails · Published 10/01/2025 12:52 · Modified 10/01/2025 13:12
• End-of-Year PTO: Days Off and Data Exfiltration with Formbook · Published 06/12/2024 22:10 · Modified 09/12/2024 12:01
• Core Werewolf hones its arsenal against Russia’s government organizations · Published 14/10/2024 11:03 · Modified 14/10/2024 11:15