The source code for a new hacking tool named Jason, allegedly used by the OilRig advanced persistent threat group (also known as APT34), has been leaked online.
Jason is used to perform brute force attacks against Microsoft Exchange email servers using pre-compiled lists of usernames and passwords and is controlled by a simple user interface.
The tool works is used by threat actors to carry out brute-force attacks using a dictionary of password samples and four text files containing numerical patterns.
Since the source code has become publicly available, it is possible attackers may incorporate Jason into their campaigns or malware.
VirusTotal details here
File type Win32 EXE
File size 46.5 KB (47616 bytes)
- Microsoft Exchange Server – All versions