ghost
commented
8 years ago added in 2cb423a primarily for indicator and named tool recognition
Closed threatlead closed 8 years ago
ghost
commented
8 years ago added in 2cb423a primarily for indicator and named tool recognition
"Evidence suggests that the tool is being used as part of a very targeted campaign, focused on Chinese nationals in commercial organizations. GlassRAT’s command and control structure has exhibited brief overlap with C2 that was identified in campaigns associated with malware originally reported in 2012 that targeted government and military organizations in the Pacific Region." --- https://blogs.rsa.com/peering-into-glassrat/