When you purchase through links on our site, we may earn an affiliate commission.Heres how it works.
This malicious website displayed aMicrosoftOneDrive folder that hosts an executable named “Unpublished Pictures 1-20230802T122531-002-sfx.exe.”
PEAPOD itself is a slimmed-down version of the RomCom RAT, featuring 10 commands (RomCom has 42).
These commands include executing arbitrary code, grabbing system information, and self-destruction in case of compromise.
The researchers believe the attackers cut down on unnecessary bulk to make the RAT stealthier and harder to remove.
