Symantec details an ongoing campaign by the Witchetty hacking group, potentially tied to a China-backed threat actor, that hides malware in a Windows logo image
Tags
country: Canada China India South Korea Singapore Russia United States Of America
attack-pattern: Data Model Malware - T1587.001 Malware - T1588.001 Server - T1583.004 Server - T1584.004 Social Media - T1593.001 Software - T1592.002 Steganography - T1001.002 Steganography - T1406.001 Steganography - T1027.003 Vulnerabilities - T1588.006
Show in Graph
Common Information
Type Value
UUID 6a4b4ee9-9729-4244-a6d9-5736fc258c37
Fingerprint 255026d636b68996
Analysis status DONE
Considered CTI value 0
Text language
Published Oct. 1, 2022, midnight
Added to db Oct. 2, 2022, 1 a.m.
Last updated Sept. 5, 2024, 1:33 a.m.
Headline UNKNOWN
Title Symantec details an ongoing campaign by the Witchetty hacking group, potentially tied to a China-backed threat actor, that hides malware in a Windows logo image
Detected Hints/Tags/Attributes 61/2/3
Source URLs
Redirection Url
Details Source https://www.techmeme.com/221001/p13
URL Provider
Details Provider Source level domain
Details techmeme.com www.techmeme.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 163 https://media.cert.europa.eu/rss?type=category&id=Malware&language=en&duplicates=false 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details Domain 1 
waxy.org
Details Domain 8 
metro.co.uk
Details Domain 11 
eurogamer.net