2024-04-18 (THURSDAY): WORD MACRO --> SSLOAD --> COBALT STRIKE

NOTES:

• Zip files are password-protected.  Of note, this site has a new password scheme.  For the password, see the "about" page of this website.

REFERENCES:

• https://www.linkedin.com/posts/unit42_ssload-cobaltstrike-timelythreatintel-activity-7187091840968351744-xqe-
• https://twitter.com/Unit42_Intel/status/1781326222019932535

ASSOCIATED FILES:

• 2024-04-18-IOCs-from-SSLoad-infection-with-Cobalt-Strike-DLL.txt.zip   1.5 kB   (1,524 bytes)
• 2024-04-18-SSLoad-with-follow-up-Cobalt-Strike-DLL.pcap.zip   4.6 MB   (4,634,772 bytes)
• 2024-04-18-SSLoad-and-Cobalt-Strike-malware-and-artifacts.zip   5.6 MB   (5,552,842 bytes)

 

Click here to return to the main page.