Southeast Asian APT Group Saaiwc Targets Military and Financial Departments with PowerDism Backdoor

Threat Level – Red | Vulnerability Report
Download PDF

Saaiwc Group (APT-LY-1005) is a newly identified APT group that is thought to operate in Southeast Asia. The group’s main tactic is to use an ISO file as a malicious payload, which when executed, injects a PowerShell command into the local registry and loads a PowerShell backdoor named PowerDism.

What’s new on HivePro

Get through updates and upcoming events, and more directly in your inbox