Unmasking Decoy Dog Malware Toolkit Hiding in DNS Traffic

Threat Level

Attack Report

For a detailed threat advisory, download the pdf file here

Summary

Decoy Dog, a sophisticated malware toolkit uses DNS for C2 communication, evading detection with its wildcard-type behavior and encryption methods. Its origin remains mysterious, and the malware’s capabilities surpass traditional RATs like Pupy, making it highly elusive.

To receive real-time threat advisories, please follow HiveForce Labs on LinkedIn.