==================================================

CREATED: WIN-PLUGX-DEADDROP-RESOLVE (#1994)

Description

This detector identifies process and network activity associated with PlugX malware performing resolution of dead drop locations for data.

ATT&CK Technique T1102

Did this answer your question?