2024-06-25 (TUESDAY): LATRODECTUS INFECTION WITH BACKCONNECT AND KEYHOLE VNC

NOTES:

• Zip files are password-protected.  Of note, this site has a new password scheme.  For the password, see the "about" page of this website.

REFERENCES:

• https://www.linkedin.com/posts/unit42_latrodectus-backconnect-keyholevnc-activity-7212105182103359488-UsPs
• https://x.com/Unit42_Intel/status/1806339560273563668

ASSOCIATED FILES:

• 2024-06-25-IOCs-from-Latrodectus-activity.txt.zip   2.4 kB   (2,445 bytes)
• 2024-06-25-Latrodectus-infection-with-BackConnect-and-Keyhole-VNC.pcap.zip   21.3 MB   (21,385,633 bytes)
• 2024-06-25-Latrodectus-malware-samples.zip   8.7 MB   (8,693,420 bytes)

 

Click here to return to the main page.