Core Werewolf hones its arsenal against Russia’s government organizations
NetmanageIT OpenCTI - opencti.netmanageit.com
SUMMARY :
BI.ZONE Threat Intelligence continues monitoring a threat actor called Core Werewolf, which has targeted Russia's defense industry and critical infrastructure since 2021. In its recent campaigns, the adversary employed a new loader written in AutoIt and started delivering malicious files via Telegram messenger, in addition to email. The report highlights that threat actors experiment with various malware delivery methods and update their tools to evade detection. AutoIt remains a popular language for developing malware.
OPENCTI LABELS :
russia,telegram,loader,autoit,delivery
Open in NetmanageIT OpenCTI Public Instance with below link!
Use public read only username and password on login page.
NOTE : Use Public READ only user credentials on login page banner.
Core Werewolf hones its arsenal against Russia’s government organizations