Yasso

Description

(Palo Alto) The emergence of a relatively new penetration testing tool set, Yasso, marked a shift in the tactics employed by TGR-STA-0043. This tool set encompassed a range of functionalities, including the following:

• Scanning • Brute forcing • Remote interactive shell capabilities • Arbitrary command execution

What set Yasso apart was its unique feature set, incorporating powerful SQL penetration functions and database capabilities. Until the time of this article, this had not been publicly reported as being used in the wild by another threat actor.

Names

Name
Yasso

Type

Vulnerability scanner

Information

https://unit42.paloaltonetworks.com/operation-diplomatic-specter/

Malpedia

https://malpedia.caad.fkie.fraunhofer.de/details/win.yasso

Other Information

Uuid

e81dcaa1-8cf8-4f16-9446-67447a7f55a7

Last Card Change

2024-06-19

Threat Intelligence Garden

Explorer

Yasso

Yasso

Description

Names

Category

Type

Information

Malpedia

Other Information

Uuid

Last Card Change

Graph View

Table of Contents

Backlinks