ACCE Release Notes v2.11.20250825

This release consists of the following:

• MythicAgents Poseidon, reported to be in use by APT36
  • 07f458d7fee5a898f64c8a840a70278b
  • ad93024dae6267893cbc52f4c62f4f29
• Extract components from Rar archives exploiting CVE-2025-8088 path traversal vulnerability, including:
  • SnipBot loader/downloader variant
    • Rar + SnipBot: 391325100384964325ed4ace788c8bc2
  • WinRunApp Downloader (CT named malware)
    • Rar + WinRunApp: 6b4d7a63aa2a8b2a5a3fbad6c8e6533e
• Ande Launcher (PowerShell)
  • 8230839a3064d1b79d9664f3f6c70667
  • dccbe96b27632522aa6c458a871f190d
• Kitsune Rat, a DcRat variant
  • be79f8b0b779e3602ab7d9c046416d2f
• INC Ransomware support for Linux and Rust-compiled binaries
  • 03dd0efa84d145d7d4ed8e240267e5c5
  • d1bf4b5b02c80ad76712695b5d5fef01
  • e76a4edc22171483804dfecc05faa6b4