ioc · name

AIRBREAK

AIRBREAK (a.k.a. Orz) JavaScript-based backdoor enumerated in the malware-family list of CISA AA21-200A as part of APT40's toolkit. Cross-referenced to MITRE S0229.

family: AIRBREAK
first seen: Jul 18, 2021
publisher: CISA

source citation