Krasue

Malware Profile Updated a month ago

Download STIX

Preview STIX

Krasue is a new form of malware that has emerged as a significant threat to the digital landscape. This malicious software, specifically designed to exploit and damage computer systems, has been found targeting telecom companies in Thailand. It infiltrates systems through suspicious downloads, emails, or websites, often without the user's knowledge, and once inside, it can steal personal information, disrupt operations, or even hold data hostage for ransom. The Krasue malware is particularly unique as it is a Linux RAT (Remote Access Trojan). This means it is designed to provide the attacker with complete control over the infected system remotely. Telecom companies in Thailand have become the primary targets for this malware, posing a significant risk to the country's communication infrastructure. The infiltration by Krasue can lead to severe disruptions in services and potential breaches of sensitive data. In response to this emerging threat, it is crucial for organizations, particularly those within the telecommunications sector in Thailand, to take necessary precautions. These include maintaining up-to-date security measures, educating employees about the risks of suspicious downloads and emails, and implementing robust incident response plans. As the situation continues to evolve, staying informed about the Krasue malware and its potential impacts will be key to mitigating its threats effectively.

What's your take? (Question 1 of 5)

Help tune the shared Cybergeist dataset, assist your peers, and earn karma. Expand the panel to get started.

Possible Aliases / Cluster overlaps

It's hard to track cluster overlaps and naming conventions between vendors, so here are some possible overlapping names / profiles you also may want to look at.

ID	Votes	Profile Description
XorDdos	4	XorDdos is a malicious software (malware) that was discovered by Microsoft in 2014 and has been widely used in attacks against cloud and Internet of Things (IoT) deployments. The Linux Trojan targets Linux devices, causing disruptions and potentially stealing sensitive information. It has been linke

Miscellaneous Associations

Other elements of context that could aid in the identification of relevance

Linux

Trojan

Malware

Rootkit

Rat

Exploit

Vulnerability

Botnet

Ransomware

Associated Malware

To see the evidence that has resulted in this association, create a free account

ID	Type	Votes	Profile Description
No associations to display

Associated Threat Actors

To see the evidence that has resulted in this association, create a free account

ID	Type	Votes	Profile Description
Diamorphine	Unspecified	2	Diamorphine is a threat actor, a human entity or group with malicious intent, that has been identified as using sophisticated techniques to compromise system security. This actor utilizes open-source rootkits available on GitHub, namely Diamorphine and Reptile, to infiltrate supported systems. These

Associated Vulnerabilities

To see the evidence that has resulted in this association, create a free account

ID	Type	Votes	Profile Description
No associations to display

Source Document References

Information about the Krasue Malware was read from the documents corpus below. This display is limited to 20 results, create a free account to see more

Source	CreatedAt	Title
Securityaffairs	5 days ago	Security Affairs Malware Newsletter - Round 3
Securityaffairs	6 days ago	Security Affairs Malware Newsletter - Round 3
Securityaffairs	12 days ago	Security Affairs Malware Newsletter - Round 2
Securityaffairs	19 days ago	Security Affairs Malware Newsletter - Round 1
Securityaffairs	a month ago	Security Affairs newsletter Round 478 by Pierluigi Paganini – INTERNATIONAL EDITION
Securityaffairs	a month ago	Security Affairs newsletter Round 477 by Pierluigi Paganini – INTERNATIONAL EDITION
Securityaffairs	a month ago	Security Affairs newsletter Round 476 by Pierluigi Paganini – INTERNATIONAL EDITION
Securityaffairs	2 months ago	Security Affairs newsletter Round 473 by Pierluigi Paganini – INTERNATIONAL EDITION
Securityaffairs	3 months ago	Security Affairs newsletter Round 470 by Pierluigi Paganini – INTERNATIONAL EDITION
Securityaffairs	3 months ago	Security Affairs newsletter Round 469 by Pierluigi Paganini – INTERNATIONAL EDITION
Securityaffairs	3 months ago	Security Affairs newsletter Round 467 by Pierluigi Paganini – INTERNATIONAL EDITION
Securityaffairs	4 months ago	Security Affairs newsletter Round 466 by Pierluigi Paganini
Securityaffairs	4 months ago	Security Affairs newsletter Round 465 by Pierluigi Paganini
Securityaffairs	4 months ago	Security Affairs newsletter Round 464 by Pierluigi Paganini
Securityaffairs	4 months ago	Security Affairs newsletter Round 463 by Pierluigi Paganini
Securityaffairs	5 months ago	Security Affairs newsletter Round 462 by Pierluigi Paganini
CERT-EU	5 months ago	Cyber Security News Weekly Round-Up : Vulnerabilities & Cyber Attacks \| #hacking \| #cybersecurity \| #infosec \| #comptia \| #pentest \| #ransomware \| National Cyber Security Consulting
Securityaffairs	5 months ago	Security Affairs newsletter Round 461 by Pierluigi Paganini
Securityaffairs	5 months ago	Security Affairs newsletter Round 460 by Pierluigi Paganini
Securityaffairs	5 months ago	Security Affairs newsletter Round 459 by Pierluigi Paganini