SYMBOLCOMMON_NAMEaka. SYNONYMS
elf.tscookie (Back to overview)

TSCookie

Actor(s): BlackTech


There is no description at this point.

References
2020-05-26TeamT5, Macnica Networks
@techreport{teamt5:20200526:2019:70c9cbc, author = {TeamT5 and Macnica Networks}, title = {{日本を狙うサイバーエスピオナージの動向 2019年度下期 (The reality of targeted attacks - Countermeasure approach)}}, date = {2020-05-26}, institution = {}, url = {https://www.macnica.net/file/mpressioncss_ta_report_2019_4.pdf}, language = {Japanese}, urldate = {2020-06-02} } 日本を狙うサイバーエスピオナージの動向 2019年度下期 (The reality of targeted attacks - Countermeasure approach)
TSCookie LODEINFO
2020-03-05JPCERT/CCShusei Tomonaga
@online{tomonaga:20200305:elftscookie:f49b873, author = {Shusei Tomonaga}, title = {{ELF_TSCookie - Linux Malware Used by BlackTech}}, date = {2020-03-05}, organization = {JPCERT/CC}, url = {https://blogs.jpcert.or.jp/en/2020/03/elf-tscookie.html}, language = {English}, urldate = {2020-03-09} } ELF_TSCookie - Linux Malware Used by BlackTech
TSCookie
2020-01-17JPCERT/CCTakayoshi Shiigi
@techreport{shiigi:20200117:looking:bf71db1, author = {Takayoshi Shiigi}, title = {{Looking back on the incidents in 2019}}, date = {2020-01-17}, institution = {JPCERT/CC}, url = {https://jsac.jpcert.or.jp/archive/2020/pdf/JSAC2020_0_JPCERT_en.pdf}, language = {English}, urldate = {2020-04-06} } Looking back on the incidents in 2019
TSCookie NodeRAT Emotet PoshC2 Quasar RAT
2019-12-12FireEyeChi-en Shen, Oleg Bondarenko
@online{shen:20191212:cyber:e01baca, author = {Chi-en Shen and Oleg Bondarenko}, title = {{Cyber Threat Landscape in Japan – Revealing Threat in the Shadow}}, date = {2019-12-12}, organization = {FireEye}, url = {https://www.slideshare.net/codeblue_jp/cb19-cyber-threat-landscape-in-japan-revealing-threat-in-the-shadow-by-chi-en-shen-ashley-oleg-bondarenko}, language = {English}, urldate = {2020-04-16} } Cyber Threat Landscape in Japan – Revealing Threat in the Shadow
Cerberus TSCookie Cobalt Strike Dtrack Emotet Formbook IcedID Icefog IRONHALO Loki Password Stealer (PWS) PandaBanker PLEAD poisonplug TrickBot BlackTech

There is no Yara-Signature yet.