A .NET-based evasive crypter named DarkTortilla has been used by threat actors to distribute a broad array of commodity malware as well as targeted payloads like Cobalt Strike and Metasploit, likely since 2015. "It can also deliver 'add-on packages' such as additional malicious payloads, benign decoy documents, and executables," cybersecurity firm Secureworks said in a … [Read more...] about Researchers Detail Evasive DarkTortilla Crypter Used to Deliver Malware
deliver
IndigoDrop spreads via military-themed lures to deliver Cobalt Strike
Cisco Blogs / Security / Threat Research / IndigoDrop spreads via military-themed lures to deliver Cobalt Strike By Asheer Malhotra. Cisco Talos has observed a malware campaign that utilizes military-themed malicious Microsoft Office documents (maldocs) to spread Cobalt Strike beacons containing full-fledged RAT capabilities. These maldocs use malicious macros to … [Read more...] about IndigoDrop spreads via military-themed lures to deliver Cobalt Strike