Dudear (aka TA505/SectorJ04/Evil Corp), used in some of the biggest malware campaigns today, is back in operations this month after a short hiatus. While we saw some changes in tactics, the revived Dudear still attempts to deploy the info-stealing Trojan GraceWire.
-
-
IoCs: HTML SHA-256: 44ffbe69f8f189de7fa4f794686241ee4c814de90681bfff0a37e344ed12954e, 63c137ed882560ba03b7333a49b0714990c581f4e8a1b7579b339c74f465aa03, 6dee4408f563522f7fe5efb9891c409827643039bf7c8cd17c0d80bcc2997ece
Prikaži ovu nit -
Dudear SHA-256: b81302bc5cbfeddf3b608a60b25f86944eddcef617e733cddf0fc93ee4ccc7ab, bf86ccaf5e7f20124a259212a3a78dae12ec2594f48d5256a01323c772abc606, d75c0e88f203dce04e7c90a32a17cee25e5d3acbb5add7c33d257b8600281f2b
Prikaži ovu nit
Kraj razgovora
Novi razgovor -
-
-
@MsftSecIntel@TacticalInSec would like a partnership to better serve our corporate clients.Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.