The cybersecurity researchers at HP Wolf Security have called this termed this trojan “RATDispenser.”
This stealthy malware delivers a 'silent threat' that wants to steal your passwords https://t.co/7caEHxlEbO
— The Cyber Security Hub™ (@TheCyberSecHub) November 26, 2021
Once it is installed, RATDispenser spreads several different types of trojans, malware, keyloggers, and other malicious content to try to steal your sensitive information.
STRRAT and WSHRAT have been discovered in four out of five samples, making them the most distributed malware. Other types of malware spread through RATDispenser include Ratty, GuLoader, Panda Stealer, Formbook, and Adwind.
While Panda Stealer was discovered this year, WSHRAT has been operating for many years. Also, when this research was conducted and published, RATDispenser was detected in one out of 10 antivirus software.
Patrick Schlapfer, who works as a malware analyst at HP Wolf Security, had to say this about the discovered trojan:
It’s particularly concerning to see RATDispenser only being detected by about 11% of antivirus systems, resulting in this stealthy malware successfully deploying on victims’ endpoints in most cases. RATs and keyloggers pose a silent threat, helping attackers to gain backdoor access to infected computers and steal credentials from business accounts or even cryptocurrency wallets. From here, cybercriminals can siphon off sensitive data, escalate their access, and in some cases sell this access on to ransomware groups.
As a precaution against the attacks by RATDispenser, researchers have recommended that network administrators look over the type of email attachment their email gateway is allowing that is completely unnecessary.