【目次】
概要
【辞書】
◆NanoCore (ATT&CK)
https://attack.mitre.org/software/S0336/
【最新情報】
◆NanoCoreHunter: NanoCore C&C サーバの追跡と180日間の RAT オペレータの行動監視 (JSAC, 2021/01/28)
https://jsac.jpcert.or.jp/archive/2021/pdf/JSAC2021_107_matsumoto_jp.pdf
⇒ https://malware-log.hatenablog.com/entry/2021/01/28/000000_1
記事
【ニュース】
◆New Cyber-Espionage Group Targets Syrian Dissidents (Softpedia, 2016/08/03 23:35)
A new cyber-espionage group operating using infrastructure based in Iran has been targeting Syrian dissidents since late 2015, according to new research unveiled by Citizen Lab.
https://news.softpedia.com/news/new-cyber-espionage-group-targets-syrian-dissidents-506952.shtml
⇒ https://malware-log.hatenablog.com/entry/2016/08/03/000000_4
◆NanoCore Is Not Your Average RAT (DigiTrust Group, 2017/01/01)
https://www.digitrustgroup.com/nanocore-not-your-average-rat/
⇒ https://malware-log.hatenablog.com/entry/2017/01/01/000000_2
◆NanoCore Trojan is protected in memory from being killed off (ZDNet, 2019/01/16 12:19)
https://www.zdnet.com/article/nanocore-trojan-stops-you-killing-its-process/
⇒ https://malware-log.hatenablog.com/entry/2019/01/16/000000_11
【ブログ】
◆NanoCoreの最新情報:攻撃者は19.99ドルのマルウェアで製造業を狙う (Proofpoint, 2019/12/18)
https://www.proofpoint.com/jp/corporate-blog/post/recent-nanocore-activity-attackers-spend-us1999-attack-manufacturing
⇒ https://malware-log.hatenablog.com/entry/2019/12/18/000000_8
【資料】
◆NanoCoreHunter: NanoCore C&C サーバの追跡と180日間の RAT オペレータの行動監視 (JSAC, 2021/01/28)
https://jsac.jpcert.or.jp/archive/2021/pdf/JSAC2021_107_matsumoto_jp.pdf
⇒ https://malware-log.hatenablog.com/entry/2021/01/28/000000_1
関連情報
【関連まとめ記事】
◆バンキングマルウェア (まとめ)
https://malware-log.hatenablog.com/entry/Banking_Malware