TA505 Distributes New SDBbot Remote Access Trojan with Get2 Downloader
released on 2019-10-16 @ 01:22:45 PM
In September 2019, Proofpoint researchers observed a prolific threat actor, TA505, sending email campaigns that attempt to deliver and install Get2, a new downloader. Get2 was, in turn, observed downloading FlawedGrace, FlawedAmmyy, Snatch, and SDBbot (a new RAT) as secondary payloads.