Deceptively Sweet: DonutLoader Reloaded in a modern Remcos RAT Infection
Source: Feeds.Feedburner
Published:
<p>G Data Analysts discovered a new Remcos RAT infection chain which started with a seemingly harmless batch file that executes encoded commands. This batch file creates hidden directories and retrieves additional tools as well as encrypted payloads while blending into normal system activity.</p> <p