Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
|
2022-01-20 10:00:11 |
MoonBounce: the dark side of UEFI firmware (lien direct) |
At the end of 2021, we inspected UEFI firmware that was tampered with to embed a malicious code we dub MoonBounce. In this report we describe how the MoonBounce implant works and how it is connected to APT41. |
Guideline
|
APT 41
|
|
|
2021-10-12 16:00:34 |
SAS 2021: Learning to ChaCha with APT41 (lien direct) |
John Southworth gives insights about APT41 and the malware used by the threat actor – the Motnug loader and its descendant, the ChaCha loader; also, shares some thoughts on the actor's attribution and the payload, including the infamous CobaltStrike. |
Malware
Threat
Guideline
|
APT 41
|
|