Krasue

Malware Profile Updated 2 days ago
Download STIX
Preview STIX
Krasue is a novel malware strain that has emerged as a significant threat to the telecommunications industry in Thailand. This malicious software, or malware, is designed to exploit and damage computer systems without the user's knowledge. It infiltrates systems through suspicious downloads, emails, or websites and can cause extensive harm by stealing personal information, disrupting operations, or even holding data hostage for ransom. This new Remote Access Trojan (RAT) specifically targets Linux systems within telecom companies. The Krasue RAT not only provides remote access capabilities to its operators but also embeds rootkits into the infected systems. Rootkits are particularly dangerous as they can hide the presence of malware, making detection and removal extremely difficult. These features make Krasue a potent threat to the integrity and security of telecom infrastructure. The emergence of the Krasue RAT underscores the increasing sophistication of cyber threats facing industries worldwide. Telecom companies in Thailand are currently grappling with this threat, which jeopardizes their operational stability and customer data security. As such, there is an urgent need for robust cybersecurity measures, including advanced threat detection mechanisms and employee education, to combat such sophisticated malware attacks.
What's your take? (Question 1 of 5)
e5c8e045-f979-42d3-9c0b-46b6b54b6ac8 Help tune the shared Cybergeist dataset, assist your peers, and earn karma. Expand the panel to get started.
Possible Aliases / Cluster overlaps
It's hard to track cluster overlaps and naming conventions between vendors, so here are some possible overlapping names / profiles you also may want to look at.
IDVotesProfile Description
XorDdos
4
XorDdos is a malicious software (malware) that was discovered by Microsoft in 2014 and has been widely used in attacks against cloud and Internet of Things (IoT) deployments. The Linux Trojan targets Linux devices, causing disruptions and potentially stealing sensitive information. It has been linke
Miscellaneous Associations
Other elements of context that could aid in the identification of relevance
Trojan
Linux
Malware
Rootkit
Rat
Exploit
Vulnerability
Associated Malware
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
No associations to display
Associated Threat Actors
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
DiamorphineUnspecified
2
Diamorphine is a threat actor, a human entity or group with malicious intent, that has been identified as using sophisticated techniques to compromise system security. This actor utilizes open-source rootkits available on GitHub, namely Diamorphine and Reptile, to infiltrate supported systems. These
Associated Vulnerabilities
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
No associations to display
Source Document References
Information about the Krasue Malware was read from the documents corpus below. This display is limited to 20 results, create a free account to see more
SourceCreatedAtTitle
CERT-EU
5 months ago
Krasue RAT Malware: A New Threat to Linux Systems
CERT-EU
6 months ago
พบ Krasue RAT (กระสือ) ใช้ Rootkit แฝงตัวใน Linux server เพื่อโจมตีบริษัทโทรคมนาคมในประเทศไทย - Bangkok, Thailand | i-secure Co, Ltd.
Securityaffairs
6 months ago
New Krasue Linux RAT targets telecom companies in Thailand
DARKReading
6 months ago
Krasue RAT Uses Cross-Kernel Linux Rootkit to Attack Telecoms
CERT-EU
6 months ago
Krasue RAT malware hides on Linux servers using embedded rootkits
BankInfoSecurity
6 months ago
'Krasue' Linux RAT Targets Organizations in Thailand
CERT-EU
5 months ago
Ankura CTIX FLASH Update - December 8, 2023, Ankura CTIX
CERT-EU
6 months ago
New XorDdos-Linked Linux RAT Krasue Targeting Telecom Firms
CERT-EU
6 months ago
New Stealthy 'Krasue' Linux Trojan Targeting Telecom Firms in Thailand
Securityaffairs
a month ago
Security Affairs newsletter Round 469 by Pierluigi Paganini – INTERNATIONAL EDITION
Securityaffairs
2 months ago
Security Affairs newsletter Round 463 by Pierluigi Paganini
CERT-EU
5 months ago
Security Affairs newsletter Round 452 by Pierluigi Paganini | #ransomware | #cybercrime | National Cyber Security Consulting
Securityaffairs
a month ago
Security Affairs newsletter Round 467 by Pierluigi Paganini – INTERNATIONAL EDITION
Securityaffairs
3 months ago
Security Affairs newsletter Round 460 by Pierluigi Paganini
Securityaffairs
3 months ago
Security Affairs newsletter Round 462 by Pierluigi Paganini
Securityaffairs
3 months ago
Security Affairs newsletter Round 459 by Pierluigi Paganini
Securityaffairs
2 months ago
Security Affairs newsletter Round 464 by Pierluigi Paganini
Securityaffairs
4 months ago
Security Affairs newsletter Round 457 by Pierluigi Paganini
Securityaffairs
4 months ago
Security Affairs newsletter Round 454 by Pierluigi Paganini
Securityaffairs
4 months ago
Security Affairs newsletter Round 454 by Pierluigi Paganini