The Hunter's Ledger
Recent Reports
HIGH · May 2026 · 89 min
HijackLoader / Penguish / Rugmi to AsyncRAT Multi-Vector Phishing Campaign
Loader RAT MaaS Open Dir
HIGH · Apr 2026 · 78 min
AdaptixC2 Open Directory Exposure — 45.130.148.125 Operator Toolkit
C2 Toolkit Open Dir Multi-Family
HIGH · Apr 2026 · 80 min
Chaos Ransomware (TorBrowserTor) Multi-Stage Batch Loader — Open Directory 94.103.1.13
Ransomware Loader Evasion Open Dir
HIGH · Apr 2026 · 55 min
ShinyHunters Data Leak Site at 91.215.85.22 — Infrastructure, Victims, and Attribution
Exfil Cred Theft Open Dir Threat
HIGH · Apr 2026 · 43 min
OpenStrike Expanded Toolkit — 106 New Files, Complete CS Arsenal Exposed
Toolkit C2 Injection Open Dir
HIGH · Apr 2026 · 52 min
OpenStrike Beacon Toolkit — Open Directory 172.105.0.126
Toolkit C2 Open Dir Evasion
All Reports
Shadow RAT & XWorm Open Directory Campaign
RAT MaaS C2 Multi-Family
Apr 2026
Open Directory at 193.56.255.154 — XiebroC2 v3.1 Go Implant and Covenant C2 Toolkit
C2 Multi-Family Open Dir Injection
Apr 2026
ZeroTrace Multi-Family MaaS Operation — Open Directory Exposure at 74.0.42.25
MaaS C2 Open Dir Multi-Family
Mar 2026
Open Directory Exposure: Sliver C2 Toolchain with ScareCrow Loader (45.94.31.220)
C2 Loader Go Evasion
Mar 2026
Webserver Compromise Kit 91.236.230.250
Toolkit Priv Esc RCE .NET
Feb 2026
Remcos RAT OpenDirectory Campaign
RAT Cred Theft Persistence Evasion
Feb 2026
NsMiner: Multi-Stage Cryptojacking Operation
Cryptominer Dropper Persistence Evasion
Feb 2026
Arsenal-237 New Files: Advanced Toolkit Analysis
Ransomware BYOVD Rootkit Rust
Jan 2026
Arsenal-237: Threat Actor R&D Repository Exposed
Toolkit Ransomware RAT Rust Go
Jan 2026
Dual-RAT Analysis: Pulsar RAT vs. NjRAT/XWorm — Technical Deep-Dive
RAT Injection .NET Cred Theft
Dec 2025
PULSAR RAT (server.exe) — Technical Analysis & Business Risk Assessment
RAT Cred Theft Evasion .NET
Dec 2025
Hybrid Loader/Stealer Ecosystem Masquerading as Sogou
Loader Stealer Cred Theft Evasion
Nov 2025
Houselet.exe — The Go-Based Loader Masquerading as PlayStation Remote Play
Loader Stealer Go Injection
Nov 2025
AdvancedRouterScanner
Scanner Python Exploitation
Oct 2025
From Webshells to The Cloud
Webshell PHP Exfil C2
Oct 2025
Quasar + XWorm + PowerShell Report
RAT Loader PowerShell Evasion
Oct 2025

Reports are © Joseph. All rights reserved — free to read, but reuse requires written permission.