Lyceum.NET DNS Backdoor
Security Boulevard
JUNE 9, 2022
Active since 2017, Lyceum group is a state-sponsored Iranian APT group that is known for targeting Middle Eastern organizations in the energy and telecommunication sectors and mostly relying on.NET based malwares. The threat actor then leverages the AutoClose() function to drop the DNS backdoor onto the system.
Let's personalize your content