Over the years, the US government has charged APT41 members with breaking into computer networks belonging to more than 100 victims across the globe.
The tactics, techniques, and procedures (TTPs) observed by the Zscaler team attribute the intrusions with medium confidence to APT41, given the similarities between DodgeBox and StealthVector malware.
DodgeBox, a newly uncovered shellcode loader by Zscaler, shares similarities with APT41's StealthVector. It includes features like decrypting DLLs, environment checks, and enhancements in implementation.
[
Collection
]
[
|
...
]