in the DNC Hack



Malware Artifacts of Interest

• ThreatGeek reported that X-Tunnel sample had

embedded OpenSSL 1.0.1e

– Heartbleed vulnerable!

• Attackers reused some C2 IP addresses

hardcoded into the DNC X-Tunnel sample from a

sample seen in the German Parliament attack in


• FireEye reporting links malware in the German

Parliament attack to Russia

(C) 2016 Rendition Infosec - Jake Williams

More magazines by this user
Similar magazines