Can this host mitigate procedures used in LokiBot malware?
CISA released an advisory in August 2022 on LokiBot malware, which can steal victims' information. This TTP emulates LokiBot's collection of browser information and stored credentials. Protection from credential dumping is essential because malware may steal account credentials to gain access to information for use in lateral movement and privilege escalation.
To view this TTPs command, you must be logged in with a professional or enterprise license.Login
Test this TTP
Download Operator (1.7.0)