Tag: Firebird Backdoor

DoNot Team’s New Firebird Backdoor Hits Pakistan and Afghanistan
News

DoNot Team’s New Firebird Backdoor Hits Pakistan and Afghanistan

DoNot Team, a threat actor, has been connected to the deployment of Firebird, a novel.NET-based backdoor that targets a small number of victims in Pakistan and Afghanistan. According to the cybersecurity firm Kaspersky, which revealed the results in its APT trends report Q3 2023, the attack chains are additionally set up to distribute a downloader called CSVtyrei, which gets its name from the fact that it resembles Vtyrei. The examples had some non-functional code, which suggested more development work, according to the Russian company. Vtyrei, also known as BREEZESUGAR, is the name of a first-stage payload and downloader strain that the adversary previously used to distribute the RTY malware framework read more DoNot Team's New Firebird Backdoor Hits Pakistan and Afghanistan. S...