Tag: 2024-08-12
2 attack reports | 239 vulnerabilities
Attack reports
Threat Actors’ Toolkit: Leveraging Sliver, PoshC2 & Batch Scripts
An investigation by The DFIR report revealed a collection of batch scripts designed for defense evasion and executing command-and-control payloads. These scripts performed various actions, including disabling antivirus processes, stopping services related to SQL, Hyper-V, security tools, and Exchan…
Downloadable IOCs 32
Ande Loader Leads to 0bj3ctivity Stealer Infection
In July 2024, eSentire's Threat Response Unit observed a phishing attack leading to a 0bj3ctivity Stealer malware infection. The attack involved a malicious JavaScript file that retrieved and executed Ande Loader and the 0bj3ctivity Stealer. Ande Loader created persistence, downloaded additional pa…
Downloadable IOCs 2
Threat Actors’ Toolkit: Leveraging Sliver, PoshC2 & Batch Scripts
An investigation by The DFIR report revealed a collection of batch scripts designed for defense evasion and executing command-and-control payloads. These scripts performed various actions, including disabling antivirus processes, stopping services related to SQL, Hyper-V, security tools, and Exchan…
Downloadable IOCs 32
Ande Loader Leads to 0bj3ctivity Stealer Infection
In July 2024, eSentire's Threat Response Unit observed a phishing attack leading to a 0bj3ctivity Stealer malware infection. The attack involved a malicious JavaScript file that retrieved and executed Ande Loader and the 0bj3ctivity Stealer. Ande Loader created persistence, downloaded additional pa…
Downloadable IOCs 2