1 yr. ago
New SugarGh0st RAT targets Uzbekistan government and South Korea
Cisco Talos recently discovered a malicious campaign that likely started as early as August 2023,
delivering a new remote access trojan (RAT) we dubbed “SugarGh0st.”
We found evidence suggesting the threat actor is targeting the Uzbekistan Ministry of Foreign
Affairs and users in South Korea.
take a looks : https://vx-underground.org...
Cisco Talos recently discovered a malicious campaign that likely started as early as August 2023,
delivering a new remote access trojan (RAT) we dubbed “SugarGh0st.”
We found evidence suggesting the threat actor is targeting the Uzbekistan Ministry of Foreign
Affairs and users in South Korea.
take a looks : https://vx-underground.org...
2
super interesting. but they are really not good at persistence xd
a simple HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun wont do the trick
a simple HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun wont do the trick
1 yr. ago
In response vxunderground to his Publication
1
