![Gi7w0rm(@Gi7w0rm) 's Twitter Profileg](https://pbs.twimg.com/profile_images/1517521509119635456/5PmWZSCK_200x200.jpg)
Gi7w0rm
@Gi7w0rm
Threat Intelligence and #URINT Analyst |
See my Linktree for other socials |
In case I post false intel, contact me!
Support me: https://t.co/5WgDqr0K8p
ID:1058319953739333632
https://linktr.ee/gi7w0rm 02-11-2018 11:28:34
7,3K Tweets
14,5K Followers
685 Following
![Gi7w0rm(@Gi7w0rm) 's Twitter Profile Photo Gi7w0rm(@Gi7w0rm) 's Twitter Profile Photo](https://pbs.twimg.com/profile_images/1517521509119635456/5PmWZSCK_200x200.jpg)
![Joseph Cox(@josephfcox) 's Twitter Profile Photo Joseph Cox(@josephfcox) 's Twitter Profile Photo](https://pbs.twimg.com/profile_images/1478359914301038592/vnFus_WU_200x200.jpg)
![Bryce(@bryceabdo) 's Twitter Profile Photo Bryce(@bryceabdo) 's Twitter Profile Photo](https://pbs.twimg.com/profile_images/1218059309311037441/07FZAUqK_200x200.jpg)
🔊 access to #DICELOADER aka Lizar/Icebot alone is not enough to attribute to the cluster we call #FIN7 .
this capability has been for 💰 for a while & is no longer considered exclusive to core #FIN7 at this pt.
and, the same goes for the #POWERTRASH loader - fun!
🧊🤖
![Germán Fernández(@1ZRR4H) 's Twitter Profile Photo Germán Fernández(@1ZRR4H) 's Twitter Profile Photo](https://pbs.twimg.com/profile_images/1142488768517156864/Ab9ueob-_200x200.png)
![Gi7w0rm(@Gi7w0rm) 's Twitter Profile Photo Gi7w0rm(@Gi7w0rm) 's Twitter Profile Photo](https://pbs.twimg.com/profile_images/1517521509119635456/5PmWZSCK_200x200.jpg)
Still up as of today:
#OrcusRAT
#XWorm
#UltraVNC
#AnyDesk
tons of loaders.
I do believe this could be a #scambaiter leaking own tools ?
There is at least one PayPal scam script in here as well refering to 777sup .org
tria.ge/230822-3m8ylah…
cc:
NanoBaiter
John Hammond
![Gi7w0rm (@Gi7w0rm) on Twitter photo 2023-08-23 00:07:13 Still up as of today: #OrcusRAT #XWorm #UltraVNC #AnyDesk tons of loaders. I do believe this could be a #scambaiter leaking own tools ? There is at least one PayPal scam script in here as well refering to 777sup .org tria.ge/230822-3m8ylah… cc: @NanoBaiter @_JohnHammond Still up as of today: #OrcusRAT #XWorm #UltraVNC #AnyDesk tons of loaders. I do believe this could be a #scambaiter leaking own tools ? There is at least one PayPal scam script in here as well refering to 777sup .org tria.ge/230822-3m8ylah… cc: @NanoBaiter @_JohnHammond](https://pbs.twimg.com/media/F4LKnfSWEAE6eYY.jpg)
![LeakIX(@leak_ix) 's Twitter Profile Photo LeakIX(@leak_ix) 's Twitter Profile Photo](https://pbs.twimg.com/profile_images/1280144245630926850/s8CLixny_200x200.jpg)
![BleepingComputer(@BleepinComputer) 's Twitter Profile Photo BleepingComputer(@BleepinComputer) 's Twitter Profile Photo](https://pbs.twimg.com/profile_images/542789702365892608/is5mSep2_200x200.png)
Ivanti warns of new actively exploited MobileIron zero-day bug - Sergiu Gatlan
bleepingcomputer.com/news/security/…
![Gi7w0rm(@Gi7w0rm) 's Twitter Profile Photo Gi7w0rm(@Gi7w0rm) 's Twitter Profile Photo](https://pbs.twimg.com/profile_images/1517521509119635456/5PmWZSCK_200x200.jpg)
![Gi7w0rm(@Gi7w0rm) 's Twitter Profile Photo Gi7w0rm(@Gi7w0rm) 's Twitter Profile Photo](https://pbs.twimg.com/profile_images/1517521509119635456/5PmWZSCK_200x200.jpg)