Patchwork is a targeted attack that has infected an estimated 2,500 targets since it was first observed in December 2015.
It is the first targeted threat captured using a commercial deception product. We were able to catch the threat actor’s second stage toolset, as well as lateral movement activity.
You can also access our GitHub repository, which contains all of the IOCs for the report. The IOCs are provided in CSV and STIX formats.