This post details technical artifacts from a SmartApeSG campaign discovered on March 12, 2026, which utilizes "ClickFix" social engineering tactics. The attack chain is designed to trick users into downloading and executing the Remcos Remote Access Trojan (RAT) through deceptive web pages.
The provided resources include Indicators of Compromise (IOCs), HTTPS traffic logs from fake CAPTCHA sites, and full packet captures (PCAP) of the infection. Additionally, several malware samples recovered from the SmartApeSG-sourced infection are included for further analysis and defensive research.
Top comments (0)