Click here to download all references as Bib-File.
|2021-12-06 ⋅ Mandiant ⋅ |
Suspected Russian Activity Targeting Government and Business Entities Around the Globe (UNC2452)
Cobalt Strike CryptBot
|2021-03-04 ⋅ FireEye ⋅ |
New SUNSHUTTLE Second-Stage Backdoor Uncovered Targeting U.S.-Based Entity; Possible Connection to UNC2452
|2018-11-19 ⋅ FireEye ⋅ |
Not So Cozy: An Uncomfortable Examination of a Suspected APT29 Phishing Campaign