ResolverRAT Campaign Targets Healthcare, Pharma via Phishing and DLL Side-Loading

A new remote access trojan, ResolverRAT, has been discovered targeting healthcare and pharmaceutical sectors through phishing emails. The malware uses localized lures, DLL side-loading, and sophisticated evasion techniques to establish persistent access and exfiltrate data. The campaign’s infrastructure and delivery mechanisms overlap with previous phishing attacks, suggesting a possible connection to related threat groups.