LazyScripter
Aliases: None listed
LazyScripter is threat group that has mainly targeted the airlines industry since at least 2018, primarily using open-source toolsets.
Open interactive actor investigation
ATT&CK techniques
T1204.001
Malicious LinkT1218.005
MshtaT1608.001
Upload MalwareT1204.002
Malicious FileT1102
Web ServiceT1059.007
JavaScriptT1583.001
DomainsT1059.005
Visual BasicT1071.004
DNST1588.001
MalwareT1105
Ingress Tool TransferT1036
MasqueradingT1566.001
Spearphishing AttachmentT1059.001
PowerShellT1059.003
Windows Command ShellT1027.010
Command ObfuscationT1547.001
Registry Run Keys / Startup FolderT1218.011
Rundll32T1566.002
Spearphishing LinkT1583.006
Web Services
Malicious LinkT1218.005
MshtaT1608.001
Upload MalwareT1204.002
Malicious FileT1102
Web ServiceT1059.007
JavaScriptT1583.001
DomainsT1059.005
Visual BasicT1071.004
DNST1588.001
MalwareT1105
Ingress Tool TransferT1036
MasqueradingT1566.001
Spearphishing AttachmentT1059.001
PowerShellT1059.003
Windows Command ShellT1027.010
Command ObfuscationT1547.001
Registry Run Keys / Startup FolderT1218.011
Rundll32T1566.002
Spearphishing LinkT1583.006
Web Services