Zero-Dwell Threat Intelligence Reports

Trojan Downloader Abusing PowerShell And WMI For Evasion.exe

long-sleeps detect-debug-environment calls-wmi assembly

MSIL Trojan Leveraging WMI Checks And Long Sleep Evasion.exe

detect-debug-environment calls-wmi checks-user-input assembly malware

Heavily Detected .NET Trojan Demonstrating Strong Anti-Analysis Techniques.exe

long-sleeps detect-debug-environment calls-wmi checks-memory-available assembly

MSIL Malware Exhibiting Strong Anti-Analysis And Evasion Techniques.exe

long-sleeps detect-debug-environment assembly obfuscated

Obfuscated .NET Backdoor Using Scheduled Tasks For Persistent Execution.exe

spreader assembly malware

AsyncRAT-Like Trojan Establishing Encrypted Remote Command Channels.exe

detect-debug-environment checks-user-input assembly

Win64 AsyncRAT Backdoor Establishing Encrypted TCP Command Channel.exe

64bits detect-debug-environment spreader

AsyncRAT-Linked MSIL Payload Establishing Encrypted Remote Control.exe

long-sleeps detect-debug-environment calls-wmi checks-memory-available assembly

AsyncRAT-Linked Backdoor Exhibiting Strong Persistence And Evasion.exe

long-sleeps detect-debug-environment calls-wmi checks-memory-available spreader assembly malware checks-disk-space service-scan

AsyncRAT Payload Leveraging WMI And Long Sleep Delays.exe

long-sleeps detect-debug-environment calls-wmi spreader assembly checks-bios obfuscated

Packed Executable Executing Dropped Payloads With Long Sleep Evasion.exe

signed 64bits long-sleeps overlay calls-wmi executes-dropped-file checks-network-adapters

AsyncRAT-Linked .NET Payload Using AES Encryption Routines.exe

long-sleeps detect-debug-environment spreader assembly