Threat Landscape Dashboard

Assessing today's threats and the relationships between them

Operation JhoneRAT Middle East

An unknown threat actor targeted multiple countries in the Middle East with various malicious Microsoft Office documents. The decoy files were used to drop the JhoneRAT remote access trojan and exfiltrate sensitive information from infected hosts. The group used various techniques to stay under the radar including cloud service providers, obfuscation, and data encoding.
Name Modified Date Sources
Operation JhoneRAT Middle East 2020-01-22