Show thread𝙽𝙴𝚃𝚁𝙴𝚂𝙴𝙲Aug 14, 2025
@BleepingComputer More info about these #ResolverRAT #PureRAT indicators can be found here:
https://netresec.com/?b=2589522
PureRAT = ResolverRAT = PureHVNC

PureRAT is a Remote Access Trojan, which can be used by an attacker to remotely control someone else's PC. PureRAT provides the following features to an attacker: See the victims user interfaceInteract with the victim PC using mouse and keyboardView the webcamListen to the microphoneRecord keystroke[...]

Netresec
Show thread𝙽𝙴𝚃𝚁𝙴𝚂𝙴𝙲Aug 14, 2025
@BleepingComputer Transcript of the TCP sessions to 45.144.53.137:57666 reveal several #ResolverRAT / #PureRAT indicators.
Show thread𝙽𝙴𝚃𝚁𝙴𝚂𝙴𝙲Aug 14, 2025
@BleepingComputer It then drops #PureRAT aka #ResolverRAT on the victim's PC.
𝙽𝙴𝚃𝚁𝙴𝚂𝙴𝙲Aug 12, 2025

PureRAT is the exact same malware as what Morphisec and others call #ResolverRAT. #PureHVNC, on the other hand, is the predecessor to #PureRAT.

IOCs:
👾 193.26.115.125:8883
👾 purebase.ddns[.]net:8883
👾 45.74.10.38:56001
👾 139.99.83.25:56001
https://netresec.com/?b=2589522

PureRAT = ResolverRAT = PureHVNC

PureRAT is a Remote Access Trojan, which can be used by an attacker to remotely control someone else's PC. PureRAT provides the following features to an attacker: See the victims user interfaceInteract with the victim PC using mouse and keyboardView the webcamListen to the microphoneRecord keystroke[...]

Netresec
Hackread.comApr 21, 2025

🚨🪝 Scammers are targeting healthcare and pharma firms with phishing emails in their native languages, leading to infections by a new, evasive malware called #ResolverRAT.

Read: https://hackread.com/native-language-phishing-resolverrat-healthcare/

#CyberSecurity #Malware #Phishing #Healthcare

Native Language Phishing Spreads ResolverRAT to Healthcare

Follow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread

Hackread - Latest Cybersecurity, Hacking News, Tech, AI & Crypto
Rod2ik 🇪🇺 🇨🇵 🇪🇸 🇺🇦 🇨🇦 🇩🇰 🇬🇱☮🕊️Apr 19, 2025

#Cyberattaque #mondiale : le #virus #ResolverRAT prend d’assaut le secteur de la #santé et de la #pharmacie

https://www.01net.com/actualites/cyberattaque-mondiale-virus-resolverrat-prend-assaut-secteur-sante-pharmacie.html

Cyberattaque mondiale : le virus ResolverRAT prend d'assaut le secteur de la santé et de la pharmacie

Un nouveau virus du nom de ResolverRAT se propage dans le monde entier. Le malware piège les entreprises du secteur de la santé et de la pharmacie avec des mails de phishing calibrés. Au terme de l'attaque, il orchestre le vol de toutes les données de l'ordinateur infecté.

01net.com
Rod2ik 🇪🇺 🇨🇵 🇪🇸 🇺🇦 🇨🇦 🇩🇰 🇬🇱 ☮🕊️Apr 19, 2025
#Cyberattaque #mondiale : le #virus #ResolverRAT prend d’assaut le secteur de la #santé et de la #pharmacie www.01net.com/actualites/c...

Cyberattaque mondiale : le vir...
Bluesky

Bluesky Social
🖱🛠👉👕👈 SOSOrdinet 🎣🖥️🐛 🗞️Apr 17, 2025

“Dans les secteurs de la santé et de l'industrie pharmaceutique” : mise en lumière de #ResolverRAT, un Cheval de Troie multi-fonctions redoutable !

https://blog.sosordi.net/2025/04/dans-les-secteurs-de-la-sante-et-de-lindustrie-pharmaceutique-mise-en-lumiere-de-resolverrat-un-cheval-de-troie-multi-fonctions-redoutable.html

#securite #data #trojan #Internet

securityaffairsApr 14, 2025
New #malware#ResolverRAT’ targets #healthcare, pharmaceutical firms
https://securityaffairs.com/176537/malware/new-malware-resolverrat-targets-healthcare-pharmaceutical-firms.html
#securityaffairs #hacking
New malware ‘ResolverRAT’ targets healthcare, pharmaceutical firms

New malware ‘ResolverRAT’ is targeting healthcare and pharmaceutical firms, using advanced capabilities to steal sensitive data.

Security Affairs
The DefendOps DiariesApr 14, 2025

Imagine malware that vanishes into a computer’s memory – bypassing traditional security and infiltrating healthcare through targeted phishing. ResolverRAT is the stealthy threat you need to know about. Ready to uncover its secrets?

https://thedefendopsdiaries.com/understanding-resolverrat-a-threat-to-healthcare-and-pharma/

#resolverrat
#malware
#healthcaresecurity
#cyberthreats
#phishing