Hackers use RATs to gain remote access and control over victim's computers. SugarGh0st RAT is a new malicious campaign discovered by Cisco Talos. It steals sensitive information, monitors activities, and deploys additional malware. The RAT is distributed via malicious Windows Shortcut and JavaScript. Targets include Uzbekistan and South Korea. SugarGh0st is a customized variant of Gh0st RAT, known since 2008. It enhances reconnaissance and has features for remote control, keylogging, webcam access, and running arbitrary binaries. It connects to C2 domains login[.]drive-google-com[.]tk and account[.]drive-google-com[.]tk. The RAT gathers computer information, accesses the victim's camera, and performs file operations. #cybersecurity #malware #SugarGh0stRAT

https://cybersecuritynews.com/sugargh0st-rat-malware/