2025-01-13 (MONDAY): KONGTUKE CAMPAIGN LEADS TO INFECTION ABUSING BOINC PLATFORM

NOTES:

• Zip files are password-protected.  Of note, this site has a new password scheme.  For the password, see the "about" page of this website.

REFERENCES:

• https://www.linkedin.com/posts/unit42_kongtuke-boinc-activity-7284986403476717568-InKv/
• https://x.com/Unit42_Intel/status/1879220778173870556

ASSOCIATED FILES:

• 2025-01-13-IOCs-for-Kongtuke-activity.txt.zip   1.7 kB   (1,697 bytes)
• 2025-01-13-KongTuke-leads-to-infection-abusing-BOINC.pcap.zip   24.5 MB   (24,496,749 bytes)
• 2025-01-13-malware-and-artifacts-from-KongTuke-activity.zip   19.0 MB   (19,002,779 bytes)

 

Click here to return to the main page.