 |
สำนักงานพัฒนาธุรกรรมทางอิเล็กทรอนิกส์ Electronic Transactions Development Agency |
|
สำนักงานพัฒนาธุรกรรมทางอิเล็กทรอนิกส์ Electronic Transactions Development Agency |
Tool: Yasso| Names | Yasso | |
| Category | Malware | |
| Type | Vulnerability scanner | |
| Description | (Palo Alto) The emergence of a relatively new penetration testing tool set, Yasso, marked a shift in the tactics employed by TGR-STA-0043. This tool set encompassed a range of functionalities, including the following: • Scanning • Brute forcing • Remote interactive shell capabilities • Arbitrary command execution What set Yasso apart was its unique feature set, incorporating powerful SQL penetration functions and database capabilities. Until the time of this article, this had not been publicly reported as being used in the wild by another threat actor. | |
| Information | <https://unit42.paloaltonetworks.com/operation-diplomatic-specter/> | |
| Malpedia | <https://malpedia.caad.fkie.fraunhofer.de/details/win.yasso> | |
Last change to this tool card: 19 June 2024
Download this tool card in JSON format
Previous: YamaBot
Next: Yispecter
| Changed | Name | Country | Observed | ||
APT groups | |||||
| Operation Diplomatic Specter |  | 2022 | |||
1 group listed (1 APT, 0 other, 0 unknown)
|
Digital Service Security Center Follow us on
|
Report incidents |
|
 |
+66 (0)2-123-1227 | |
 |
[email protected] | |