Tag: BlackTech

• A Quick Look at ELF Bifrose (Part 1)

  Bifrose or Bifrost is a backdoor initially targeting Windows systems with a long history. First identified in the early 2000’s, it is believed a hacking group (likely BlackTech), purchased the source code or gained access to it around 2010, and enhanced the malware for use in its own campaigns. BlackTech has long targeted both Windows […]

  Mike

  December 30, 2022

  INFOSEC

  APT, BlackTech, INFOSEC, Malware

• More Flagpro, More Problems

  

  No stranger to this blog, BlackTech has continued to modify techniques to compromise networks and even suffered an OPSEC slip in the way of an open directory. This post will cover a malicious document similar to that identified by [1] PWC and [2] NTT in the previous reporting on the group. While I cannot definitively […]

  Mike

  December 12, 2021

  INFOSEC

  APT, BlackTech, Malware