The REF2924 threat cluster was observed dropping a previously-unseen malware, dubbed NAPLISTENER, on entities in Southeast and South Asia. The malware evades “network-based forms of detection.” More information here https://www.elastic.co/security-labs/naplistener-more-bad-dreams-from-the-developers-of-siestagraph
