Poisoned PyTorch

Poisoned PyTorch is a blue team lab that falls under the Threat Hunting category and will cover the following subjects: CyberChef, Splunk, IDA, PEStudio, Initial Access, Execution, Persistence, Privilege Escalation, Defense Evasion, Credential Access, Discovery, Lateral Movement, Impact.

Learning Objectives

Investigate a software supply-chain compromise that escalates into a ransomware attack, with emphasis on identifying pre-encryption operations.

Categories: Threat Hunting.

MITRE ATT&CK Tactics: Initial Access, Execution, Persistence, Privilege Escalation, Defense Evasion, Credential Access, Discovery, Lateral Movement, Impact.

Tools: CyberChef, Splunk, IDA, PEStudio.

Difficulty: medium.