New Threat Wave from Earth Freybug: Unapimon Malware Campaign
UnapimonMalwareEarthFreybugCampaignDLLHijackingTacticsCyberDefenseAwarenessEarth FreybugAPT41Axiom
Researchers report new technical details of an "Unapimon" malware campaign attributed to Earth Freybug that leverages dynamic link library (DLL) hijacking and application programming interface (API) disabling to prevent child processes from being offloaded to other processes."
Indicators of Compromise
No domains found for this campaign
APT Groups1
AxiomChina
Campaign Guidance
Remediation, mitigation, notes, history and related intelligence
REMEDIATIONS
Enhance Endpoint Security Measures: Strengthen endpoint security by deploying advanced solutions capable of detecting and blocking UNAPIMON's DLL side-loading tactics.
Maintain Software Integrity: Ensure that all software components, including operating systems and third-party applications, are kept up-to-date to mitigate potential vulnerabilities exploited by UNAPIMON.
Implement Network Segmentation: Divide the network infrastructure to contain UNAPIMON's spread and minimize its impact on critical systems.
Participate in Threat Intelligence Exchange: Stay informed about evolving threats like UNAPIMON by actively engaging in information sharing initiatives with industry peers and security organizations.
Educate Employees on Security Best Practices: Provide comprehensive training to staff members to recognize and avoid potential threats posed by malicious DLL files, thereby enhancing overall security awareness.
Deploy Behavior Monitoring Solutions: Utilize monitoring tools capable of identifying suspicious activities associated with UNAPIMON's behavior, enabling timely detection and response.
Establish Incident Response Protocols: Develop and regularly test incident response procedures to ensure swift and effective mitigation of UNAPIMON infections or other security incidents.
Observed Countries250
AD (473)
AE (848)
AF (97)
AG (951)
AI (448)
AL (882)
AM (634)
AO (585)
AQ (649)
AR (757)
AS (155)
AT (661)
AU (283)
AW (169)
AX (303)
AZ (78)
BA (981)
BB (464)
BD (116)
BE (744)
BF (177)
BG (435)
BH (281)
BI (970)
BJ (220)
BL (323)
BM (302)
BN (463)
BO (368)
BQ (865)
BR (689)
BS (362)
BT (108)
BV (538)
BW (82)
BY (170)
BZ (167)
CA (789)
CC (827)
CD (910)
CF (149)
CG (490)
CH (924)
CI (728)
CK (297)
CL (175)
CM (568)
CN (908)
CO (23)
CR (809)
CU (26)
CV (880)
CW (910)
CX (408)
CY (67)
CZ (769)
DE (895)
DJ (848)
DK (654)
DM (702)
DO (234)
DZ (299)
EC (345)
EE (442)
EG (368)
EH (532)
ER (1)
ES (362)
ET (726)
FI (100)
FJ (475)
FK (725)
FM (775)
FO (918)
FR (944)
GA (760)
GB (255)
GD (799)
GE (58)
GF (429)
GG (784)
GH (20)
GI (131)
GL (134)
GM (971)
GN (543)
GP (774)
GQ (16)
GR (54)
GS (306)
GT (898)
GU (137)
GW (434)
GY (587)
HK (527)
HM (806)
HN (141)
HR (323)
HT (172)
HU (252)
ID (432)
IE (267)
IL (264)
IM (435)
IN (963)
IO (405)
IQ (399)
IR (101)
IS (573)
IT (820)
JE (965)
JM (672)
JO (685)
JP (730)
KE (457)
KG (378)
KH (9)
KI (652)
KM (849)
KN (678)
KP (772)
KR (532)
KW (693)
KY (633)
KZ (842)
LA (416)
LB (510)
LC (638)
LI (671)
LK (646)
LR (96)
LS (376)
LT (133)
LU (548)
LV (834)
LY (895)
MA (976)
MC (831)
MD (422)
ME (596)
MF (789)
MG (466)
MH (347)
MK (932)
ML (59)
MM (479)
MN (380)
MO (19)
MP (162)
MQ (82)
MR (788)
MS (516)
MT (296)
MU (133)
MV (260)
MW (904)
MX (381)
MY (925)
MZ (923)
NA (52)
NC (607)
NE (404)
NF (645)
NG (106)
NI (424)
NL (894)
NO (688)
NP (893)
NR (221)
NU (58)
NZ (841)
OM (828)
PA (141)
PE (368)
PF (139)
PG (645)
PH (134)
PK (430)
PL (863)
PM (436)
PN (61)
PR (301)
PS (619)
PT (506)
PW (197)
PY (700)
QA (110)
RE (957)
RO (613)
RS (676)
RU (930)
RW (376)
SA (827)
SB (199)
SC (582)
SD (11)
SE (127)
SG (671)
SH (950)
SI (352)
SJ (956)
SK (1)
SL (798)
SM (34)
SN (342)
SO (814)
SR (605)
SS (951)
ST (624)
SV (434)
SX (808)
SY (899)
SZ (786)
TC (551)
TD (357)
TF (343)
TG (506)
TH (601)
TJ (580)
TK (536)
TL (291)
TM (114)
TN (66)
TO (100)
TR (384)
TT (437)
TV (429)
TW (792)
TZ (325)
UA (290)
UG (190)
UM (389)
US (540)
UY (676)
UZ (575)
VA (349)
VC (545)
VE (443)
VG (309)
VI (635)
VN (230)
VU (992)
WF (143)
WS (789)
XK (680)
YE (407)
YT (774)
ZA (288)
ZM (610)
ZW (984)