CIRCL (Twitter feed) · @circl
117 followers · 607 posts · Server mastodon.opencloud.luI recently ran a #Trickbot sample and the attackers went from #Trickbot to #Ryuk in just over two hours. The attackers ran #CobaltStrike within 30 minutes and confirmed hands on activity on a DC within 60 minutes. #dfir #nsm #IOCs @MISPProject @circl_lu
https://www.wilbursecurity.com/2020/03/trickbot-to-ryuk-in-two-hours …
#IOCs #nsm #dfir #cobaltstrike #ryuk #TrickBot
Last updated 5 years ago