Earth EstriesEarth Estries

Also known as: Earth Estries

Known aliases
1

Profile

Trend Micro found that Earth Estries relies heavily on DLL sideloading to load various tools within its arsenal. Aside from the backdoors previously mentioned, this intrusion set also utilizes commonly used remote control tools like Cobalt Strike, PlugX, or Meterpreter stagers interchangeably in various attack stages. These tools come as encrypted payloads loaded by custom loader DLLs.

Aliases· 1

Earth Estries

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Actor
Earth Alux
Actor
Earth Baxia
Actor
Earth Lamia
Actor
Earth Krahang
Actor
Earth Freybug
Software
ESTEEMAUDIT
Sourced from MISP-Galaxy Threat Actor cluster. Curated by Adam Lundqvist, Founder at SQUR.