Update 2/26/2022: Additional details added to embedded resources section, specifically around driver usage.
Update 2/25/2022:
During additional investigation Cisco Talos has found that, in some cases, along with HermeticWiper, the adversaries also dropped a legitimate copy of the sysinternals...
[[ This is only the beginning! Please visit the blog for the complete entry ]]
[[ This is only the beginning! Please visit the blog for the complete entry ]]