"New Rust-based Fickle Malware Uses PowerShell for UAC Bypass and Data Exfiltration"

"Fickle Stealer," a new Rust-based information stealer malware, is delivered via multiple attack chains to steal sensitive data from compromised hosts. Fortinet FortiGuard Labs said it knows of four distribution methods, some of which use a PowerShell script to bypass User Account Control (UAC) and execute Fickle Stealer. The script periodically sends the victim's country, city, IP address, operating system version, computer name, and username to the attacker's Telegram bot. This article continues to discuss findings regarding the Fickle Stealer malware.

THN reports "New Rust-based Fickle Malware Uses PowerShell for UAC Bypass and Data Exfiltration"

Submitted by grigby1
 

Submitted by Gregory Rigby on