2019-04-18 11:27:12 +08:00
|
|
|
### APT34
|
|
|
|
|
APT34 / OILRIG LEAK, QUICK ANALYSIS
|
2019-04-18 17:56:34 +08:00
|
|
|
|
2019-04-18 17:56:22 +08:00
|
|
|
https://misterch0c.blogspot.com/2019/04/apt34-oilrig-leak.html
|
2019-04-18 17:56:34 +08:00
|
|
|
|
2019-04-18 17:56:22 +08:00
|
|
|
https://malware-research.org/apt34-hacking-tools-leak/
|
2019-04-18 17:56:34 +08:00
|
|
|
|
2019-04-18 18:00:14 +08:00
|
|
|
this man leak , telegram group
|
|
|
|
|
https://web.telegram.org/#/im?p=@lab_dookhtegan
|
2019-04-19 14:35:59 +08:00
|
|
|
|
|
|
|
|
Hacking tools:
|
|
|
|
|
- Glimpse (newer version of a PowerShell-based trojan that Palo Alto Networks names BondUpdater)
|
|
|
|
|
- PoisonFrog (older version of BondUpdater)
|
|
|
|
|
- HyperShell (web shell that Palo Alto Networks calls TwoFace)
|
|
|
|
|
- HighShell (another web shell)
|
|
|
|
|
- Fox Panel (phishing kit)
|
|
|
|
|
- Webmask (DNS tunneling, main tool behind DNSpionage)
|
