All Topics
All Topics
Technology
Technology
AI
AI
Business
Business
Entertainment
Entertainment
News
News
Programming
Programming
Security
Security
Science
Science
Design
Design
Environment
Environment
Finance
Finance
Crypto
Crypto
Politics
Politics
Sports
Sports
Education
Education
Gaming
Gaming
Art
Art
Music
Music
Health
Health
Books
Books
Food
Food
Travel
Travel
Personal
Personal
Bluesky
Twitter

Multi-Stage Cyberattack Campaign Uses RAR Archives to Target Thailand's Healthcare Sector

By

Seqrite

16d ago· 4 min readenNews

Summary

Seqrite TRU discovered a multi-stage cyberattack campaign targeting Thailand's healthcare sector. The attack uses spear-phishing emails with RAR archives containing obfuscated batch loaders, GitHub-hosted payloads, and a Python-based information stealer that exfiltrates data via Telegram. The campaign employs healthcare-themed lures to trick victims, establishes persistence through Windows Startup folders, and harvests browser credentials for sustained access and data theft.

Source

bskyMulti-Stage Cyberattack Campaign Uses RAR Archives to Target Thailand's Healthcare Sectorhendryadrian.com

Key quotes

· 2 pulled
Seqrite TRU uncovered a multi-stage campaign targeting Thailand's healthcare sector with spear-phishing RAR archives, obfuscated batch loaders, GitHub-hosted payloads, and a Python stealer that attempts Telegram-based exfiltration.
The operation used healthcare-themed lures, Startup-folder persistence, and browser credential harvesting to sustain access and steal data.
Snippet from the RSS feed
Seqrite TRU uncovered a multi-stage campaign targeting Thailand’s healthcare sector with spear-phishing RAR archives, obfuscated batch loaders, GitHub-hosted payloads, and a Python stealer that attempts Telegram-based exfiltration. The oper...

You might also wanna read

Comments

Sign in to join the conversation.

No comments yet. Be the first.