Mirrors/cert-orangecyberdefense-cti
1
0
Fork 0
mirror of https://github.com/cert-orangecyberdefense/cti synced 2026-06-08 22:47:22 +00:00
Code Issues Packages Projects Releases Wiki Activity

history typo

Browse Source
This commit is contained in:
CERT Orange Cyberdefense
2025-03-13 17:04:13 +01:00
committed by GitHub
parent fc54b3d94e
commit 60cf82992f
1 changed files with 2 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files
smartloader/README.md
+2 -2
View File
@@ -1,7 +1,7 @@
Following a recent TrendMicro [investigation](https://www.trendmicro.com/en_us/research/25/c/ai-assisted-fake-github-repositories.html), we have found many GitHub repositories actively delivering SmartLoader. SmartLoader is Lua-written loader distributed since early 2024.
Following a recent TrendMicro [investigation](https://www.trendmicro.com/en_us/research/25/c/ai-assisted-fake-github-repositories.html), we have found many GitHub repositories actively delivering SmartLoader. SmartLoader is Lua-written loader distributed since mid 2023.
In recent campaigns, threat actors have been creating new GitHub repositories populated with an AI generated README and filled with fake backdated commits. We have also observed the same payloads being distributed via inactive repositories. These repositories are typically forked, with a new release containing SmartLoader ultimately added.
We have uploaded on our [GitHub](https://github.com/cert-orangecyberdefense/cti/tree/main/smartloader) an additional list of IoCs that complements TrendMicro's report.
**Released on 2025-03-12**
**Released on 2025-03-12**