in the DNC Hack

munin

Potential-for-False-Flag-Operations-in-the-DNC-Hack-Jake-Williams

Malware Artifacts of Interest

• ThreatGeek reported that X-Tunnel sample had

embedded OpenSSL 1.0.1e

– Heartbleed vulnerable!

• Attackers reused some C2 IP addresses

hardcoded into the DNC X-Tunnel sample from a

sample seen in the German Parliament attack in

2015

• FireEye reporting links malware in the German

Parliament attack to Russia

(C) 2016 Rendition Infosec - Jake Williams

More magazines by this user
Similar magazines