RST TI Report Digest: 10 Mar 2025

Positive Technologies ESC identified a campaign named "Desert Dexter" targeting Middle Eastern and North African users via Telegram and SEO-poisoning that delivers modified AsyncRAT in malicious RAR archives; the malware disables security, establishes persistence, captures keystrokes and looks for cryptocurrency wallets, with roughly 900 potential victims and extensive IoCs (domains, file URLs, Telegram channels, and many file hashes).