RustyClaw (Malware Family)

SYMBOL	COMMON_NAME	aka. SYNONYMS

win.rusty_claw (Back to overview)

RustyClaw

Actor(s): RomCom

According to Proofpoint, RustyClaw is a downloader written in Rust

References

2025-06-30 ⋅ Proofpoint ⋅ David Galazin, Greg Lesnewich, Kelsey Merriman, Proofpoint Threat Research Team, Selena Larson
10 Things I Hate About Attribution: RomCom vs. TransferLoader
MeltingClaw RustyClaw ShadyHammock SlipScreen TransferLoader

2024-10-17 ⋅ Cisco Talos ⋅ Asheer Malhotra, Dmytro Korzhevin, Vanja Svajcer, Vitor Ventura
UAT-5647 targets Ukrainian and Polish entities with RomCom malware variants
MeltingClaw ROMCOM RAT RustyClaw ShadyHammock RomCom

There is no Yara-Signature yet.