Yoroi-ZLab cyber security experts analyzed in depth the Pterodo backdoor. A malware used to collect sensitive information or maintain access on compromised machines.
Cyber security expert Vitali Kremez explains why the APT is important today for Russia and it’s new toolset with macro payload execution, for less reliance on traditional binary malware approach.
Cybaze-Yoroi ZLAB cyber security experts: The campaign shows the Matryoshka structure to chain SFX archives, typical of APT implant, and the use of a legit third party RAT as payload.
Yoroi-Cybaze cyber security experts: After APT28, also Gamaredon is spying Kiev. The lure is a legit military document, weaponized with Pteranodon malware.