A threat actor has released the source code of Parrot Stealer, which is suspected to be the predecessor to MiniStealer, which can easily generate malicious payloads.
GROUP: windows
MALWARE FAMILIES: Ministealer, ParrotStealer
ATT&CK IDS: T1566 - Phishing, T1003 - OS Credential Dumping, T1127 - Trusted Developer Utilities Proxy Execution, T1007 - System Service Discovery, T1041 - Exfiltration Over C2 Channel, T1057 - Process Discovery, T1070 - Indicator Removal on Host, T1071 - Application Layer Protocol, T1087 - Account Discovery, T1497 - Virtualization/Sandbox Evasion, T1518 - Software Discovery, T1528 - Steal Application Access Token, T1539 - Steal Web Session Cookie, T1552 - Unsecured Credentials, T1555 - Credentials from Password Stores
Read More:
Comentários