Dacls Remote Access Trojan (RAT) associated with North Korea’s Lazarus group, designed specifically for the Mac operating system. It spread via TinkaOTP app, an application that provide Two-factor Authentication.
SepSys Ransomware encrypts user data using AES, and then requires a ransom of $100 in BTC in order to return the files. .sepsys extension is added to encrypted files.
Jigsaw Ransomware and old malware is back with a phishing campaign that spread LokiBot. The LokiBot install Jigsaw Ransomware as its payload using an old Microsoft Office CVE-2017-11882 remote code execution vulnerability in Equation Editor.
This is an Andorid Locker application that upon execute abuse android.permission.SYSTEM_ALERT_WINDOW and ask for a code to close the alert. It did not ask for ransom just an annoying alert box.
njRAT is one of the oldest and popular remote access trojan (RAT) in the malware world. njRAT is also known as Bladabindi RAT Njw0rm RAT. The reason of its popularity is the fact its source code is available and YouTube has tons of tutorials on it.