SYMBOLCOMMON_NAMEaka. SYNONYMS
win.burnbook (Back to overview)

BURNBOOK

Actor(s): UNC2970

According to Mandiant, BURNBOOK is a dropper for TEARPAGE.

References
2025-11-20Orange CyberdefenseAlexis Bonnefoi, Marine PICHON
A Pain in the Mist: Navigating Operation DreamJob’s arsenal
BURNBOOK MISTPEN
2025-10-23ESET ResearchAlexis Rapin, Peter Kálnai
Gotta fly: Lazarus targets the UAV sector
BURNBOOK QuanPinLoader ScoringMathTea
2024-09-17MandiantMandiant
An Offer You Can Refuse: UNC2970 Backdoor Deployment Using Trojanized PDF Reader
BURNBOOK MISTPEN

There is no Yara-Signature yet.