← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
How an APT technique turns to be a public Red Team Project
WHITE APT29 AlienVault 2023-09-07 Modified: 2023-09-07
18
IOCs
MEDIUM VOLUME
A report by Yoroi's Malware ZLab and Palo Alto Networks explores the art of DLL Sideloading, as well as the evolving tactics of the APT29 cyber-espionage team.
dll sideloadingapt29iso archivelibrariesapiscobaltstrikeshellcode
MITRE ATT&CK & Malware Families
ATT&CK TECHNIQUES
Indicators of Compromise (2 / 18 total)
All FileHash-MD5 FileHash-SHA1 FileHash-SHA256 YARA
TYPEINDICATORDESCRIPTIONCREATED
FileHash-SHA1 01364e95c575a4b37fa35f5576d70cf420f9ec18 SHA1 of ffd5114ffb3a2f66757cecb2fb0079cceaa42a4b42ded566e76b7d58b4effac5 2023-09-07
FileHash-SHA1 fe1573ade35d70b74e04baba95fe29f4ef22c53f SHA1 of 2d866ccf2b24e3b922abb3d3980c2ed752d86b6c017bc2bf7a1c209aa9464643 2023-09-07
References (1)
↗ https://yoroi.company/research/how-an-apt-technique-turns-to-be-a-public-red-team-project/