SYMBOLCOMMON_NAMEaka. SYNONYMS
osx.xagent (Back to overview)

X-Agent

Actor(s): APT28


There is no description at this point.

References
2020SecureworksSecureWorks
@online{secureworks:2020:iron:48c68a0, author = {SecureWorks}, title = {{IRON TWILIGHT}}, date = {2020}, organization = {Secureworks}, url = {https://www.secureworks.com/research/threat-profiles/iron-twilight}, language = {English}, urldate = {2020-05-23} } IRON TWILIGHT
X-Agent X-Agent X-Agent Computrace HideDRV Sedreco Seduploader X-Agent XTunnel Zebrocy Zebrocy (AutoIT)
2017-03-23Twitter (PhysicalDrive0)PhysicalDrive0
@online{physicaldrive0:20170323:xagent:74f4c95, author = {PhysicalDrive0}, title = {{Tweet on XAgent for macOS}}, date = {2017-03-23}, organization = {Twitter (PhysicalDrive0)}, url = {https://twitter.com/PhysicalDrive0/status/845009226388918273}, language = {English}, urldate = {2019-12-17} } Tweet on XAgent for macOS
X-Agent
2017-02-21BitdefenderBitdefender
@techreport{bitdefender:20170221:dissecting:eec4e1f, author = {Bitdefender}, title = {{Dissecting the APT28 Mac OS X Payload}}, date = {2017-02-21}, institution = {Bitdefender}, url = {https://download.bitdefender.com/resources/files/News/CaseStudies/study/143/Bitdefender-Whitepaper-APT-Mac-A4-en-EN-web.pdf}, language = {English}, urldate = {2020-01-10} } Dissecting the APT28 Mac OS X Payload
X-Agent
2017-02-14Palo Alto Networks Unit 42Robert Falcone
@online{falcone:20170214:xagentosx:33ef060, author = {Robert Falcone}, title = {{XAgentOSX: Sofacy’s XAgent macOS Tool}}, date = {2017-02-14}, organization = {Palo Alto Networks Unit 42}, url = {http://researchcenter.paloaltonetworks.com/2017/02/unit42-xagentosx-sofacys-xagent-macos-tool/}, language = {English}, urldate = {2019-12-20} } XAgentOSX: Sofacy’s XAgent macOS Tool
X-Agent

There is no Yara-Signature yet.