Malware Indicator Profile
This training material produces network indicators related to POWRUNER backdoor, which is used by APT34, an Iranian threat actor. The profile is simulating a shutdown response.
Training Material Preview
This is what you can expect when using this training material during a training session or red team engagement.
- IDS Alerts
This section illustrates the IDS alerts produced by Snort with Emerging Threats Open Ruleset and Snort Community Ruleset. No alerts were triggered during a malware simulation with the Blue Team Training Toolkit. Please, note that future ruleset updates may produce a different result.
- Indicators of Compromise
This section highlights the indicators of compromise generated by the training material.
The malware indicator profile has a size of 0.003 MB.
The training material has been based on threat intelligence provided by this source.