Tags
MalwareRATReverse shell
Techniques
Disable loggingExfiltration via AWS Transfer
Incidents
ArcaneDoor Campaign Targeting Cisco Adaptive Security Appliance 0day
References
https://blog.talosintelligence.com/arcanedoor-new-espionage-focused-campaign-found-targeting-perimeter-network-devices/
Last edited
Aug 7, 2024 9:19 AM
An in-memory shellcode loader used to execute arbitrary shellcode payloads, which facilitated actions such as disabling logging, providing remote access, and packet exfiltration.