valitydev/APT_CyberCriminal_Campagin_Collections
14
0
Fork 0
mirror of https://github.com/valitydev/APT_CyberCriminal_Campagin_Collections.git synced 2024-11-06 08:45:24 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

2021.01.11.Sunburst_Kazuar

Browse Source
This commit is contained in:
cybermonitor 2021-01-12 09:01:36 +08:00
parent 403f9daa06
commit 7bc4e6d7ea
2 changed files with 1 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

BIN
2021/2021.01.11.Sunburst_Kazuar/securelist.com-Sunburst backdoor code overlaps with Kazuar.pdf Normal file
View File

Binary file not shown.

1
README.md
View File

@ -28,6 +28,7 @@ Please fire issue to me if any lost APT/Malware events/campaigns.
:small_blue_diamond: [vx-underground](https://vx-underground.org/apts.html) <br>
## 2021
* Jan 11 - [[Kaspersky] Sunburst backdoor code overlaps with Kazuar](https://securelist.com/sunburst-backdoor-kazuar/99981/) | [:closed_book:](../../blob/master/2021/2021.01.11.Sunburst_Kazuar)
* Jan 07 - [[Prodaft] Brunhilda DaaS Malware Analysis Report](https://t.co/mzp7NRDIm1?amp=1) | [:closed_book:](../../blob/master/2021/2021.01.07.Brunhilda_DaaS_Malware)
* Jan 06 - [[CISCO] A Deep Dive into Lokibot Infection Chain](https://blog.talosintelligence.com/2021/01/a-deep-dive-into-lokibot-infection-chain.html) | [:closed_book:](../../blob/master/2021/2021.01.06.Lokibot_Infection_Chain)
* Jan 06 - [[Malwarebytes] Retrohunting APT37: North Korean APT used VBA self decode technique to inject RokRat](https://blog.malwarebytes.com/threat-analysis/2021/01/retrohunting-apt37-north-korean-apt-used-vba-self-decode-technique-to-inject-rokrat/) | [:closed_book:](../../blob/master/2021/2021.01.06.APT37_North_Korean_APT_RokRat)