March 25, 2022

March 9th, 2022: MicroBackdoor Attacks Ukraine

Industry: Government | Level: Tactical | Source: Portswigger

Ukraine’s Computer Emergency Response Team (CERT-UA) warns malware MicroBackdoor is targeting Ukrainian government agencies. The malware reported from The Daily Swig, is distributed in a phishing email containing a zip file with accompanying files that executes malicious code in VBScript. Intelligence from CERT-UA identified the malware was created in January 2022.

  • Anvilogic Scenario: MICROBACKDOOR Infection Flow
  • Anvilogic Use Cases:
    • Malicious Document Execution
    • Wscript/Cscript Execution