THREAT OPS › Threat News › KongTuke FileFix Leads to New Interlock RAT Variant
KongTuke FileFix Leads to New Interlock RAT Variant
<p>Researchers from The DFIR Report, in partnership with Proofpoint, have identified a new and resilient variant of the Interlock ransomware group’s remote access trojan (RAT). This new malware, a shift from the previously identified JavaScript-based Interlock RAT (aka NodeSnake), uses PHP and is being used in a widespread campaign. Since May 2025, activity related to […]</p> <p>The po
MITRE ATT&CK techniques
- JavaScriptT1059.007