Rewterz Threat Advisory – 2018’s Most Exploited Unpatched Vulnerabilities in Microsoft Products
March 20, 2019Rewterz Threat Advisory – CVE-2019-6534 AVEVA Uncontrolled Search Path Element Vulnerability
March 21, 2019Rewterz Threat Advisory – 2018’s Most Exploited Unpatched Vulnerabilities in Microsoft Products
March 20, 2019Rewterz Threat Advisory – CVE-2019-6534 AVEVA Uncontrolled Search Path Element Vulnerability
March 21, 2019Severity
Medium
Analysis Summary
A hideous malware family called Cardinal RAT has resurfaced after remaining undetected for over two years. The malware is delivered via a unique downloader named Carp Downloader. A series of attacks has been observed using an updated version of Cardinal RAT. A series of modifications have been made to the RAT, many of which are used to evade detection and hinder analysis.
Impact
Cardinal RAT
Indicators of Compromise
Remediation
Block the threat indicators at their respective controls.