New STRRAT RAT Phishing Campaign
released on 2022-01-21 @ 10:03:09 AM
STRRAT is a multi-capability Remote Access Trojan that dates to at least mid-2020. Unusually, it is Java-based and is typically delivered via phishing email to victims. Like most phishing attacks, previous STRAAT campaigns have used an intermediate dropper attached to the email that downloads the final payload when opened. This sample dispenses with that tactic and instead attaches the final payload directly to the phishing email.