[MART] - Daily Diary #568 - Meet Dark Utilities, A New C2-as-a-Service

ctas-mat at appgate.com ctas-mat at appgate.com
Fri Aug 5 21:06:09 UTC 2022


I hope everyone is doing well!

Below is the entry for today.

08/05/2022 - Diary entry #568:

A command and control server (mentioned in many of our daily diaries) is the set of tools and techniques that threat actors use to maintain communication with compromised devices after initial exploitation. Once the connection is established, they can control their malware by sending commands, managing configurations, and deploying additional payloads.

Recently, a new C2-as-a-Service (C2aaS) platform called "Dark Utilities" was found, available from early 2022 with a growing 3000 active subscribers. This platform provides C2 capabilities on both the Tor network and the surface web and supports Interplanetary File System (IPFS) for hosting payloads that can target both Windows and Linux OSs, including Python-based payloads. It also offers a variety of services, such as remote access, DDoS capabilities, cryptocurrency mining, and decentralized data storage and sharing.

Threat actors are putting an increased effort to facilitate their illicit activities and make a profit by selling them in the “as-a-Service“ business model at lower costs and with a great amount of functionality. Considering this, we expect C2aaS platforms like Dark Utilities to become more popular and adopted by criminals who need to quickly weaponize their operations.

Kind Regards,

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.immunityinc.com/pipermail/mart/attachments/20220805/8b50e8d4/attachment.htm>

More information about the MART mailing list