Sophisticated PlugX backdoor variant leveraged in Mustang Panda attacks

Numerous countries across Asia, including Taiwan, Vietnam, India, Japan, and China, have been targeted by Chinese state-backed advanced persistent threat operation Mustang Panda, also known as Earth Preta, Camaro Dragon, Bronze President, TA416, and Stately Taurus, in attacks involving the advanced DOPLUGS backdoor, which is a variant of the PlugX malware, reports The Hacker News. Unlike the basic PlugX backdoor, DOPLUGS has been integrated with a separate launcher enabling an executable to conduct DLL sideloading, while facilitating command execution and next-stage malware deployment, according to a report from Trend Micro.

Source: SC Magazine

 


Date:

Categorie(s):