Analysis of Suspected APT Attack Activities by “Silver Fox”
Essential information
- Published
- 10/07/2024 10:19
- Modified
- 10/07/2024 10:31
- Tags
- 2024-07-10 apt cybercrime malware obfuscation phishing updatedll winos
- Related entities
- 7 observables, 1 intrusion sets (apt), 9 techniques (mitre), 2 malware
Description
This document examines the recent activities of the Silver Fox cybercrime group, which has traditionally targeted financial and tax entities but has now shifted its focus towards impersonating national institutions and security companies. The analysis involves a phishing website, Winos remote control samples, a downloader trojan, and a PowerShell obfuscation tool. The group's tactics suggest a potential overlap between cybercrime and APT (Advanced Persistent Threat) operations, necessitating further monitoring.