прочее Достал какие то fireeye tools

[XLino]

APT_Backdoor_SUNBURSTфайлы внутри хрен знает какие: APT WEB shell supernova: .rsrc, .L2, .reloc, .text ещё эсть: APT_Dropper_Win64_TEARDROP

 

[balabashka]

SUNBURST, TEARDROP and the NetSec New Normal - Check Point Research

Foreword In December 2020, a large-scale cyberattack targeting many organizations – predominantly tech companies, mainly in the United States, but not only there – was discovered to have been going on for several months. The attack was of a degree of sophistication that led to a quick consensus...

research.checkpoint.com