The Lotus Panda is awake, again

  • 11 May 2022
  • 0 replies
The Lotus Panda is awake, again
Userlevel 5
Badge +3
  • Community Manager
  • 24 replies

In this attack analyzed by C25, the Chinese APT used a spear phishing email to deliver a beacon of a Red Team framework known as "Viper".

The kill chain includes an artifact that is already known and that was attributed to Naikon one year ago and it is used to load and execute a custom shellcode.
The target of this attack is currently unknown but with high probability, given the previous history of the attack perpetrated by the group, it might be a government institution from a South Asian country.

0 replies

Be the first to reply!