: Uses themed phishing emails, malicious PDFs, and Excel exploits (like CVE-2018-0802) to bypass initial defenses. Remote Surveillance
, this paper analyzes a specific campaign where the RAT was delivered via phishing emails containing malicious PDF invoices. Attack Chain Leads to xWorm and AgentTesla : Research from Elastic Security Labs xworm 3.1
According to these reports, the 3.1 variant typically includes: Multi-Stage Infection : Uses themed phishing emails, malicious PDFs, and
, a malicious software used by cybercriminals to gain unauthorized control over victim machines. : Uses themed phishing emails
: Capabilities to perform DDoS attacks and steal cryptocurrency wallet information.