Tweet URL - https://twitter.com/redcanary/status/1541838407894171650 | Hacker Trends

Red Canary on Twitter: "The #BumbleBee dropper/downloader continues to change. We’re now seeing odbcconf.exe load the malicious DLL (rather than Rundll32). While odbcconf.exe can execute DLL files, we don’t commonly observe it doing so in the wild, so this is an interesting change! #RCIntel https://t.co/oXtXAu77V8" / Twitter

https://twitter.com/redcanary/status/1541838407894171650

https://x.com/home/status/1541945680066904064

https://x.com/home/status/1541948357496782850

https://x.com/home/status/1541962687298560000

https://x.com/home/status/1541972901171286016

https://x.com/home/status/1542015536346841089

https://x.com/home/status/1542070375219077121

https://x.com/home/status/1542162750335508480

https://x.com/home/status/1542186926756749313