EastWind Attack Deploys PlugY and GrewApacha Backdoors Using Booby-Trapped LNK Files
Briefly

from The Hacker News6 months ago
PlugY, downloaded via CloudSorcerer, provides extensive commands and uses three protocols for C2 communication - Kaspersky.
The Hacker Newshttps://thehackernews.com/2024/08/russian-government-hit-by-eastwind.html
Malware like GrewApacha deploys through DLL side-loading using GitHub to store C2 server details; CloudSorcerer enables espionage via Graph, Yandex, and Dropbox - Kaspersky.
The Hacker Newshttps://thehackernews.com/2024/08/russian-government-hit-by-eastwind.html
Read at The Hacker News
#cybersecurity #spear-phishing #malware #backdoors #trojans
[
|
]