Threats Tagged 'quarksdumplocalhash'
View all threats tagged with 'quarksdumplocalhash'. Filter and sort to focus on specific types of threats.
Stop chasing alerts. Route them.
Start free, then upgrade once to turn Radar into an automated delivery engine for your security stack.
Custom feeds / Automations: email, Slack, webhooks, SIEM/MISP / API access (baseline limits)
API access activates after upgrading in Console -> Billing.
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.
Filter Threats
Narrow down the results by type, severity, or affected countries
Threats Tagged 'quarksdumplocalhash'
Click on any threat for detailed analysis and mitigation recommendations
GoSerpent backdoor attacks in Southeast Asia 0 Since late 2025, government and diplomatic entities in Southeast Asia have been targeted by sophisticated attacks involving GoSerpent, a Go-based remote access trojan (RAT) with proxy capabilities. The malware uses encrypted communications and deploys multiple tools for data collection and credential dumping. The campaign includes several stages, such as initial deployment of GoSerpent and ThumbcacheService for file collection, credential dumping using Mimikatz and QuarksDumpLocalHash, and later deployment of Stowaway RAT and TmcLoader/TmcPayload for stealthy data exfiltration via network shares. The attackers leverage cloud infrastructure and are possibly linked to the TetrisPhantom threat actor. No specific software versions are affected, and no patches are available as this is malware rather than a software vulnerability. Join the discussion | AlienVault OTX General | 07/16/2026, 16:15:00 UTC Added: 07/17/2026, 00:32:32 UTC |
Showing 1 to 1 of 1 result