Cymulate named a Customers' Choice in 2025 Gartner® Peer Insights™
Learn More
New Case Study: Credit Union Boosts Threat Prevention & Detection with Cymulate
Learn More
New Research: Cymulate Research Labs Discovers Token Validation Flaw
Learn More
An Inside Look at the Technology Behind Cymulate
Learn More
Book a Demo
Book a Demo

Windows Help File Distributes AsyncRAT

February 8, 2023

Microsoft Windows help files (*.chm) were used to distribute variants of the AsyncRAT remote access trojan. The infection process started with the user executing the chm file causing a blank help window to pop-up while malicious scripts were executed, and the RAT was downloaded from a remote server. The payload exfiltrated sensitive data over SMTP to the actor's command-and-control servers.

Featured Resources

View More Resources
From Vulnerability to Validation
Demo

From Vulnerability to Validation

See how Cymulate connects vulnerabilities to real attack scenarios to validate what’s actually exploitable.

Learn More
image
Demo

Threat Validation Demo

See how Cymulate helps security teams quickly validate protection against new threats and get answers in minutes

Learn More
image
Demo

From Control Validation to Exposure Validation

See how security teams move from control validation to true exposure validation using real-world attack scenarios

Learn More