T1105

Ingress Tool Transfer

discovered 2024-11-04

First-stage obfuscator.io downloader fetches a ~10.6MB Rust-compiled infostealer second stage from GitHub Releases (github.com/angelmaybeth21-oss/test/releases/download/v1.0.0/{linux,mac,win.js}) and executes it via a detached child process (Amazon Inspector).

View on MITRE ATT&CK

Seen in packages

Campaigns