Actor(s): Gamaredon Group
According to Microsoft, this is a heavily obfuscated .NET malware, primarily geared towards the exfiltration of data from the compromised host. But it can also receive and execute a remote payload from the operator.
|2022-02-04 ⋅ Microsoft ⋅ |
ACTINIUM targets Ukrainian organizations
DilongTrash DinoTrain Pteranodon QuietSieve Gamaredon Group
There is no Yara-Signature yet.