Actor behind Operation LagTime targets Russia

Analysis of the backdoor in memory

Attribution

IOCs

Rtf file

Network

Backdoor:

--

--

--

Malwarist,Threat Huntist and pythonist / core dev of #yeti/ member of @ProjectHoneynet / co-organizer #BotConf / researcher

Love podcasts or audiobooks? Learn on the go with our new app.

Recommended from Medium

Trust, in Information Security

Ransomware and Everything about it!

How Websites Can Identify You By Your Browser Extensions and Web Logins

Providing Privileged Access Management (PAM) to On-Premises Infrastructure and Azure AD

It’s only a test server

What is a ‘Data Protection Impact Assessment’ (DPIA) under EU Law?

CROSS detailed version information released

{UPDATE} FireLine: Merge Defense Hack Free Resources Generator

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Sebdraven

Sebdraven

Malwarist,Threat Huntist and pythonist / core dev of #yeti/ member of @ProjectHoneynet / co-organizer #BotConf / researcher

More from Medium

Wazuh Active Response — Blocking malicious IPs from an Apache web server

Lapsus — The Observed IOC’s

Why is CrowdSec free?

Cyberdefenders-Boss Of The SOC v1