Cybereason Nocturnus cybersecurity Team: The Iran’s linked malicious code, a backdoor, features encrypted C2 channels and supports downloading additional payloads.
Cybereason cybersecurity experts: The malware, an info-stealer, is available for purchase in the underground for a price range between US $25 and $500.
Cybereason cyber security experts: The malware, written in Python, has different functionalities. The chain of infection and the infrastructure are also changed.
The Cybereason cyber security experts: The new variants combine several layers of infection with various exploits and tools to form a complete attack. Furthermore it’s outfitted with a cryptominer.