Strike Ready: Introducing the Bitter APT Group
Essential information
- Published
- 19/08/2024 13:35
- Modified
- 19/08/2024 13:59
- Tags
- 2024-08-19 backdoors espionage figlio.exe infostealers olmapi32.dll orpcbackdoor payloads persistence schs.exe scm.exe searchapp.jpg sparrow.jpg sstn.exe stom.jpg
- Related entities
- 82 observables, 1 intrusion sets (apt), 10 techniques (mitre), 9 malware
Description
The report provides an in-depth analysis of the Bitter APT Group, a threat actor primarily focusing on cyber espionage activities in South Asia. It details the group's tactics, techniques, and procedures, including their ability to bypass security technologies by leveraging obscure file formats and encrypted payloads. The report examines various malware samples, backdoors, and information stealers utilized by the group, shedding light on their capabilities and methods of operation. Additionally, it provides indicators of compromise, YARA rules, and recommendations for defending against these persistent threats.