🔥 Burn Fat Fast. Discover How! 💪

APT35 Automates Initial Access Using ProxyShell Initial Acce | Malware News

APT35 Automates Initial Access Using ProxyShell

Initial Access: #ProxyShell
Discovery: net, ipconfig, PowerShell, quser, etc.
PrivEsc: Scheduled Task
Defense Evasion: Real-time Monitoring & WDigest enablement
Credential Access: Comsvcs.dll

https://thedfirreport.com/2022/03/21/apt35-automates-initial-access-using-proxyshell/
TheDFIRReport


@malwr
Next Message
telegram-store.com © 2016-2024
Non official site about Telegram
All rights reserved. Copying and using of full materials is prohibited, partial quoting is possible only with a hyperlink to the site telegram-store.com.