Alerts
Events
DCR
Explore Cyware Products
Alerts
Events
DCR
Go to listing page
SUNBURST Performs Anti-Analysis Environment Checks Before Contacting C2 Server
Malware and Vulnerabilities
December 26, 2020
FireEye
Before reaching out to its C2 server, SUNBURST performs numerous checks to ensure no analysis tools are present. It checks process names, file write timestamps, and Active Directory (AD) domains before proceeding.
Read More
SUNBURST
SolarWinds Orion plugin
UNC2452
Backdoor
file write timestamps
Publisher
Previous
SolarWinds releases updated advisory for new SUPERNOVA ...
Malware and Vulnerabilities
Next
How to Detect and Search for SolarWinds IOCs in LogRhyt ...
Threat Intel & Info Sharing
/https://cyware-ent.s3.amazonaws.com/image_bank/iStock-515748738.jpg)
/https://cyware-ent.s3.amazonaws.com/image_bank/iStock_000079910913_Medium.jpg)
