Gorgon Group Apt, Feb 2, 2024 · APT报告合集及一些特殊的威胁情报列表(IOCs),Anonymous,APT Groups and Operations,Sofacy,APT29,,Gold lowell,Iridium,DNSpionage,Tortoiseshell APT-C-56(透明部落)利用外贸链接伪装文档攻击分析 APT-C-56(透明部落)伪装印度国防部邮件攻击的跟踪简报 透明部落利用新冠疫苗热点对印度医疗行业的定向攻击活动分析 APT-C-56(透明部落)近期最新攻击分析与关联疑似Gorgon Group攻击事件分析预警 2021-09-02 2021 Gorgon Group APT Operation Agent Tesla 2022-01-12 ⋅ MalGamy Deep analysis agent tesla malware Agent Tesla 2022-01-12 ⋅ Guillaume Orlando Malware Analysis - AgentTesla v3 Agent Tesla 2022-01-03 ⋅ forensicitguy ⋅ Tony Lambert A Tale of Two Dropper Scripts for Agent Tesla Agent Tesla 2021-12-31 ⋅ InfoSec Handlers Diary Blog ⋅ Jan 0,'hood,(slang) a neighborhood 1,1530s,the decade from 1530 to 1539 2,15_May_Organization,a terrorist organization formed in 1979 by a faction of the Popular Front for the Liberat 网络威胁 短链接 Gorgon Group自2019年6月开始使用了短链接,可以在此地图中按位置查看。 C2域名 可以注意到可以解析用作C2联系人的所有域。 在第二次,如果报告所有域名以查看是否在WHOIS中注册了该域名,再次注意到某些域名未被注册并用作虚假域名。 Oct 4, 2023 · APT36 is linked to the adversary known as the Gorgon Group, an espionage-motivated group with connections to Pakistan that has directed attacks against government organizations in the United Kingdom, Spain, Russia, and United States. Oct 17, 2018 · The group has performed a mix of criminal and targeted attacks, including campaigns against government organizations in the United Kingdom, Spain, Russia, and the United States. Apr 29, 2020 · 前言 之前在日常样本运营中,发现了一个以巴西乐队命名的攻击文档和钓鱼邮件,并在随后的关联分析中发现,此次攻击活动疑似来自一个名为Gorgon的攻击组织,而Gorgon是一个被认为来自南亚某国家的攻击组织,PAN公司的Unit42团队将该攻击活动命名为Aggah。 Feb 24, 2022 · 引言 APT-C-58(Gorgon Group)组织疑似具有巴基斯坦国家民族背景或与巴基斯坦有联系的国家民族背景。该组织实施了网络犯罪和有针对性的网络攻击,包括针对英国、西班牙、俄罗斯和美国的政府 Mar 17, 2022 · 二. Aug 2, 2018 · Starting in February 2018, Palo Alto Networks Unit 42 identified a campaign of attacks performed by members of Gorgon Group targeting governmental organizations in the United Kingdom, Spain, Russia, and the United States. This late 2021 campaign leverage an in-memory-infection chain to drop the AgentTesla malware on the infected computer, initiated by some phishing emails. 关联Shoot行动分析 近期我们捕获了一批针对印度的样本,其最终释放NetwireRAT,NetwireRAT是开源的商业RAT软件,但是也已经被一些APT组织使用,例如 APT33 和 Gorgon,Gorgon Group 是一个由疑似巴基斯坦或与巴基斯坦有其他联系的成员组成。 网络威胁 短链接 Gorgon Group自2019年6月开始使用了短链接,可以在此地图中按位置查看。 C2域名 可以注意到可以解析用作C2联系人的所有域。 在第二次,如果报告所有域名以查看是否在WHOIS中注册了该域名,再次注意到某些域名未被注册并用作虚假域名。 May 4, 2026 · “The launch rush has finally settled, and we’re working on new stuff!” Project Gorgon’s Eric Heimburg announced bright and early this morning, and he came prepared with a list of good news and some maybe not so good news for some players of the game. Aug 16, 2025 · Starting in February 2018, Palo Alto Networks Unit 42 identified a campaign of attacks performed by members of Gorgon Group targeting governmental organizations in the United Kingdom, Spain, Russia, and the United States. Technical analysis on some of the attacks as well as attribution links with Pakistan actors have been already depicted by 360 and Tuisec, in which they found interesting connections to a larger group of attackers Unit 42 researchers have been tracking, which we are calling Gorgon Group. BreachHQ Threat Actors and APT Groups Threat Actors and APT Groups This page provides a list of all known cyber threat actors also referred to as malicious actors, APT groups or hackers. 关联Shoot行动分析 近期我们捕获了一批针对印度的样本,其最终释放NetwireRAT,NetwireRAT是开源的商业RAT软件,但是也已经被一些APT组织使用,例如 APT33 和 Gorgon,Gorgon Group 是一个由疑似巴基斯坦或与巴基斯坦有其他联系的成员组成。 Oct 4, 2023 · APT36 is linked to the adversary known as the Gorgon Group, an espionage-motivated group with connections to Pakistan that has directed attacks against government organizations in the United Kingdom, Spain, Russia, and United States. gz1m, tyw, pw2y, oif3c, wic6, ip8h, qusbji, ntbc, oav, xj7,