An analysis of GreyEnergy's phishing attack

GreyEnergy: Dissecting the Malware from Maldoc to Backdoor

Cover

GreyEnergy is an Advanced Persistent Threat (APT) which is believed to have been targeting the energy sector in Ukraine and other Eastern European countries for the past several years.

GreyEnergy uses a common infection method, phishing emails with infected documents. However, the malware’s code is anything but common – it is well written, smartly put together and designed to defeat detection by cybersecurity products.

In this white paper, dive into an analysis of how the malware works, from the moment someone receives the phishing email, until the malware (backdoor) is installed in their system.

Vendor:
Nozomi Networks
Posted:
26 Sep 2019
Published:
28 Feb 2019
Format:
PDF
Length:
41 Page(s)
Type:
White Paper
Language:
English
Already a Bitpipe member? Login here

Download this White Paper!