The DoNot Team, an advanced persistent threat actor known as APT-C-35, has released a series of updates to the Windows framework, which they use to launch attacks on South Asia.
TAGS: APT-C-35, DoNot Team, APT
ADVERSARY: APT-C-35
INDUSTRIES: Defence, Foreign Affairs, Military, Government
TARGETED COUNTRIES: Bangladesh, Sri Lanka, India, Pakistan
ATT&CK IDS: T1059 - Command and Scripting Interpreter, T1140 - Deobfuscate/Decode Files or Information, T1055 - Process Injection, T1195 - Supply Chain Compromise, T1102 - Web Service, T1053 - Scheduled Task/Job, T1574 - Hijack Execution Flow, T1566 - Phishing, T1221 - Template Injection, T1113 - Screen Capture, T1020 - Automated Exfiltration, T1056.001 - Keylogging, T1115 - Clipboard Data, T1091 - Replication Through Removable Media
Read More:
Komentarze