This article has been indexed from Securelist
John Southworth gives insights about APT41 and the malware used by the threat actor – the Motnug loader and its descendant, the ChaCha loader; also, shares some thoughts on the actor’s attribution and the payload, including the infamous CobaltStrike.
Read the original article: SAS 2021: Learning to ChaCha with APT41