PlugX DLL Sideloading via MSI Installer: Complete Malware Analysis of a KorPlug Campaign
PlugX (KorPlug) is a modular remote access trojan delivered in this campaign through an MSI-based...
Read More
Phantom Stealer Analysis: Inside the Two-Layer Attack Chain Hidden Behind a Windows DLL
Phantom Stealer is a two-layer Windows infostealer attack chain that uses a malicious pdh.dll...
Read More
Salat Stealer Analysis: Go-Based RAT, C2 Resilience, and Info-Stealing Capabilities
Executive Overview Salat Stealer is a sophisticated Go-based Remote Access Trojan (RAT) with deep...
Read More
Beyond TTPs: A Better Way to Attribute APT Activity Through Campaign Linkage
Introduction Attribution in cyber threat intelligence has long been built around the concept of...
Read More