The threat group tracked asREF2924has been observed deploying previously unseen malware in its attacks aimed at entities in South and Southeast Asia. The malware, dubbedNAPLISTENERby Elastic Security Labs, is an HTTP listener programmed in C# and is designed to evade “network-based forms of detection.” REF2924is the moniker assigned to an activity cluster linked to attacks against an entity