Introduction

A new variant of the infamous APT28 Lojax (aka Double-Agent) has been discovered by the MalwareLab researchers. It is the latest version of the well-known rootkit Double-Agent, previously analyzed by ESETresearchers.

https://blog.yoroi.company/research/hunting-for-sofacy-lojax-double-agent-analysis/