Thursday, April 2, 2020
Latest:

living-off-the-land

Microsoft Secure 

Latest Astaroth living-off-the-land attacks are even more invisible but not less observable

TH Author , , , , , , , , , , , , ,

Astaroth is back sporting significant changes. The updated attack chain maintains Astaroth’s complex, multi-component nature and continues its pattern of detection evasion.
The post Latest Astaroth living-off-the-land attacks are even more invisible but not less observable appeared first on Microsoft Security. READ MORE HERE…

Read more
Microsoft Secure 

Multi-stage downloader Trojan sLoad abuses BITS almost exclusively for malicious activities

TH Author , , , , , ,

Many of today’s threats evolve to incorporate as many living-off-the-land techniques as possible into the attack chain. The PowerShell-based downloader Trojan known as sLoad, however, puts all its bets on BITS. Background Intelligent Transfer Service (BITS) is a component of the Windows operating system that provides an ability to transfer files in an asynchronous and…
The post Multi-stage downloader Trojan sLoad abuses BITS almost exclusively for malicious activities appeared first on Microsoft Security. READ MORE HERE…

Read more
Microsoft Secure 

Dismantling a fileless campaign: Microsoft Defender ATP next-gen protection exposes Astaroth attack

TH Author , , , , , , , , , , , , , , , , , ,

Advanced technologies in Microsoft Defender ATP next-generation protection exposed and defeated a widespread fileless campaign that completely “lived off the land” throughout a complex attack chain that run the info-stealing backdoor Astaroth directly in memory
The post Dismantling a fileless campaign: Microsoft Defender ATP next-gen protection exposes Astaroth attack appeared first on Microsoft Security. READ MORE HERE…

Read more
This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Learn More