New Threat Group "Earth Longzhi" Targeting Global Government, Infrastructure, Aviation, Health, and Finance Orgs
Trend Micro researchers based the assessed connection between the groups on shared targets, shared Cobalt Strike metadata, code similarities, and shared tactics, techniques, and procedures (TTPs). ... On November 9, 2022, Trend Micro researchers reported two campaigns they attribute to a new threat group Earth Longzhi, which they assess is a subgroup of APT41. Malware: CroxLoader, AllInOne, ProcBurner, BigpipeLoader, OutLoader, SymaticLoader, SYMATIC, Multipiploader, AVBurner, EarthLongzhi [View Article](https://rhisac.org/?p=14114)