2023-01-01から1年間の記事一覧

2023-10-06

Sequel: Gifts from Tropical Pirates - Who is the Sender? Look for the Attacker Group

Background What is Tropic Trooper? The Need for Attribution Overall picture of the campaign Similarities to previous samples Similarities between EntryShell and KeyBoy Relationship between the new malware CrowDoor and FamousSparrow What is…

#APT #Targeted Attack #Spear-phishing email #Malware Analysis #Xiangoop loader #FamousSparrow #CrowDoor #EntryShell #KeyBoy

2023-09-28

Gifts from Tropical Pirates -New Dangerous Weapons Hidden in Email and Malware

Summary Targeted Attack Mail Attachments Infection flow of malware Launching shortcut files Malware Analysis and Description of Operation Installer Operation Loader Operation Attacker’s mistake? The threat actor Countermeasures IoCs Destin…

#APT #Targeted Attack #Spear-phishing email #Malware Analysis #Blue Team #KeyBoy #Tropic Trooper #Pirate Panda #Xiangoop loader #FamousSparrow