WIRTE’s campaign in the Middle East ‘living off the land’ since at least 2019
SecureList
NOVEMBER 29, 2021
We attribute this campaign with high confidence to an actor named WIRTE, which is a lesser-known threat actor first publicly referenced by our colleagues at Lab52 in 2019. Get list of antivirus software installed. Get operating system architecture. Gaining an initial foothold. ‘rootSecurityCenter2’ -Query $wmiQuery.
Let's personalize your content