Yara Rule - 포렌식 아티팩트, 파일 이름 및 키워드와 관련된 거래 기술과 관련하여 UNC4736을 손상시킵니다.
Yara 정의.
Yara Rule - Detects forensic artifacts, file names and keywords related the Trading Technologies compromise UNC4736
Yara definition.
Author: Florian Roth
https://www.mandiant.com/resources/blog/3cx-software-supply-chain-compromise
date = "2023-04-20"```
[https://github.com/Neo23x0/signature-base/commit/cb716772e0ccf5bfccd747d14d0bfe68a52b279f](https://github.com/Neo23x0/signature-base/commit/cb716772e0ccf5bfccd747d14d0bfe68a52b279f)