Cybersecurity researchers uncovered a malware campaign using PureCrypter to deliver the DarkVision RAT, highlighting multi-stage delivery processes.
DarkVision RAT communicates with its command-and-control server via a custom protocol, boasting capabilities like keylogging, password theft, and screen captures, according to Zscaler's analysis.
PureCrypter, an off-the-shelf malware loader sold on a subscription basis, enables the distribution of RATs, information stealers, and ransomware to cybercriminals.
Persistence mechanisms for DarkVision RAT include scheduled tasks and autorun keys, employing multiple methods to ensure it remains active and undetected.
Collection
[
|
...
]