Unmasking Decoy Dog Malware Toolkit Hiding in DNS Traffic
Unmasking Decoy Dog Malware Toolkit Hiding in DNS Traffic
Threat Level
Attack Report
For a detailed threat advisory, download the pdf file here
Summary
Decoy Dog, a sophisticated malware toolkit uses DNS for C2 communication, evading detection with its wildcard-type behavior and encryption methods. Its origin remains mysterious, and the malware’s capabilities surpass traditional RATs like Pupy, making it highly elusive.
To receive real-time threat advisories, please follow HiveForce Labs on LinkedIn.