Anonymous 🐈️🐾☕🍵🏴🇵🇸 Sep 20, 2024

2024-09-19 (Thurs): As early as 2024-09-10, this infection chain abuses steamerrorreporter64.exe to side-load vstdlib_s64.dll as a downloader to retrieve & run #LummaStealer. Details at https://bit.ly/3zrV0yY

#DllSideLoading #Lumma #TimelyThreatIntel #Unit42ThreatIntel

Unit42-timely-threat-intel/2024-09-19-IOCs-for-file-downloader-to-Lumma-Stealer.txt at main · PaloAltoNetworks/Unit42-timely-threat-intel

A collection of files with indicators supporting social media posts from Palo Alto Network's Unit 42 team to disseminate timely threat intelligence. - PaloAltoNetworks/Unit42-timely-threat-intel

GitHub
Anonymous 🐈️🐾☕🍵🏴🇵🇸 Sep 17, 2024
2024-09-16 (Monday): Saw an #infostealer calling itself "VIP Recovery" which some might call #VIPKeyLogger. Further investigation indicates it's actually #SnakeKeyLogger. Indicators and more info available at https://bit.ly/3XLR715 #Unit42ThreatIntel
Unit42-timely-threat-intel/2024-09-16-IOCs-for-Snake-KeyLogger.txt at main · PaloAltoNetworks/Unit42-timely-threat-intel

A collection of files with indicators supporting social media posts from Palo Alto Network's Unit 42 team to disseminate timely threat intelligence. - PaloAltoNetworks/Unit42-timely-threat-intel

GitHub