Today we have a brand new set of labs related to Mint Sandstorm: Campaign Analysis and Threat Actors: APT35
Since November 2023, Microsoft has observed a distinct sub-set of Mint Sandstorm (PHOSPHORUS) targeting high-profile individuals working on Middle Eastern affairs. On Wednesday, January 17, 2024, Microsoft released a report on a sub-set of the APT35 group, called Mint Sandstorm. This group is known for it's very resource intensive and complex social engineering to build rapport with it's targets before compromising and exfiltrating targeted sensitive data.
In these labs, you'll learn about Mint Sandstorm's latest campaign, as reported by Microsoft, and have access to their malicious dynamic link library (DLL) file for analysis. You'll also discover more about the APT35 threat group and how they operate, execute, and exfiltrate
Who's it for?
- SOC Analysts
- Threat Hunters
- Incident Responders
- Malware Analysts
What are the key takeaways?
- Outline the details of Mint Sandstorm's latest campaign.
- Identify tactics, techniques, and procedures used during this Mint Sandstorm campaign.
- Analyze and identify specific TTPs used by APT35.
- Apply knowledge of APT35’s TTPs to design and implement effective detection and mitigation strategies.
CyberPro licensed users can access the new CTI labs by following the links below.
Immerser