The Overlapping Cyber Strategies Of Transparent Tribe And SideCopy Against India

May 15, 2024, 3:32 p.m.


CRIL's analysis revealed SideCopy APT group's sophisticated malware campaign, employing malicious LNK files and a complex infection chain involving HTAs and loader DLLs to deploy malware like ReverseRAT and Action RAT. SideCopy targets Indian universities and government entities, suggesting potential overlap with Transparent Tribe's tactics. The campaign leverages spam emails with malicious links to initiate infections and establish backdoor access for data exfiltration and remote control of victim systems. SideCopy demonstrates evolving techniques, demanding heightened cybersecurity vigilance to defend against persistent threats.


Published Created Modified
May 15, 2024, 3:16 p.m. May 15, 2024, 3:16 p.m. May 15, 2024, 3:32 p.m.


Attack Patterns

Additional informations