Stealthy AsyncRAT malware attacks targets US infrastructure for 11 months

A campaign delivering AsyncRAT malware to carefully chosen targets has been ongoing for at least 11 months, using unique loader samples and multiple domains. First detected by Microsoft and AT&T researchers, the malware is delivered via hijacked email threads and phishing attacks. If the malware determines it’s under analysis, it deploys decoy payloads to mislead researchers. This renowned, open-source tool mainly targets Windows systems and is infamous for remote command execution and data exfiltration.