Silver Fox Deploys ABCDoor and ValleyRAT in Tax-themed Phishing in India and Russia

Colleagues: a Silver Fox campaign has been identified.
Kaspersky reports tax-themed phishing emails in India and Russia. Archives/SFX contained a modified RustSL loader that fetched ValleyRAT and the Python backdoor ABCDoor.
Targets: industrial, consulting, retail and transport firms; over 1,600 emails observed. Operators used geofencing, sandbox evasion and Phantom Persistence.
Recommendations: strengthen mail filtering, inspect archives/SFX, monitor ValleyRAT and unknown Python processes, deploy behavioural EDR.
Why it matters: targeted phishing combined with resilient persistence raises the risk of prolonged compromise.
How ready is your infrastructure for such threats?
#cybersecurity #phishing #incidents #EDR


Latest comments
No comments yet.