🚨 GitHub 监控消息提醒
🚨 发现关键词: #YARA #APT #malware
📦 项目名称: gamybear
👤 项目作者: yankywilson
🛠 开发语言: Go
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-05-24 22:50:11
📝 项目描述:
🔗 点击访问项目地址
🚨 发现关键词: #YARA #APT #malware
📦 项目名称: gamybear
👤 项目作者: yankywilson
🛠 开发语言: Go
⭐ Star数量: 0 | 🍴 Fork数量: 0
📅 更新时间: 2026-05-24 22:50:11
📝 项目描述:
First public reverse engineering of GAMYBEAR, the Go backdoor used by UAC-0241 against Ukrainian education and state-authority targets. Static + dynamic analysis with 15 findings extending CERT-UA#18329, including a persistence correction and the http.DefaultClient TLS failure. IOCs, YARA, Suricata, Snort, STIX.🔗 点击访问项目地址
GitHub
GitHub - yankywilson/gamybear: First public reverse engineering of GAMYBEAR, the Go backdoor used by UAC-0241 against Ukrainian…
First public reverse engineering of GAMYBEAR, the Go backdoor used by UAC-0241 against Ukrainian education and state-authority targets. Static + dynamic analysis with 15 findings extending CERT-UA#...
