Top Tweets for #PowerMagic
SOFAR's #PowerMagic captured everyone's attention at Solar Solutions Amsterdam yesterday, and here’s why:
✔️ Installed, tested & trusted in the Netherlands 🇳🇱
✔️ Efficient and flexible, reducing LCOS
✔️ Ultimate safety, intelligent management, and whisper-quiet operation
Day 1: Mission Accomplished! ✅
Team SOFAR: All smiles and thumbs up! 👍✨
Missed the excitement today? No worries—you've still got another chance to experience the buzz at Booth H11.
See you there soon! ⚡️
#SOFAR #RenewableEnergy #Solar #EnergyStorage #PowerMagic
SOFAR is lighting up the 20th SUCEXPO in Jinan! 🌟
Crowds love PowerMagic—our quiet, efficient, and reliable energy storage solution featuring advanced noise-reduction tech for businesses and industries. ⚡️
#SOFAR #SUCEXPO #PowerMagic #EnergyStorage
😍 their blaugrana energy >>>
💙❤️ @marvin_seh
Recently we uncovered an unknown APT in the RU-UA conflict that involved use of #PowerMagic & #CommonMagic implants.
We dug deeper and identified a cluster of even more sophisticated activities from the same threat actor we dubbed #CloudWizard 👉 https://t.co/lt803s0bah
✔️يُعتقد أن جهة تهديد لم يتم التعرف عليها من قبل تستخدم برامج ضارة جديدة تسمى #CommonMagic و #PowerMagic للتصيد الاحتيالي للحصول على تفاصيل الأهداف في المناطق المتنازع عليها التي تسيطر عليها روسيا في أوكرانيا. 🇷🇺vs🇺🇦
New #APT group, #CommonMagic leverages #PowerMagic backdoor to target individuals in RU-UA conflict. Full story and #IOC on @Securelist 👉 https://t.co/9fnPzaNMlI
#ThreatProtection New #threat group leveraging #PowerMagic #backdoor and #CommonMagic #framework, read more about Symantec's protection: https://t.co/A8TlXUVU44 #malware
#APT #BadMagic
#PowerMagic variant downloaded from 176.114.9[.]192 uses Dropbox as C2
https://t.co/PZlK86xmJ0
Creates in %LOCALAPPDATA%:
WinEventCom\config
WinEventCom\manutil.vbs
№_64_ФЗ_от_26.04.2022.pdf
Task WindowsActiveXTaskTrigger launches manutil.vbs via wscript.exe
![t3ft3lb's tweet photo. #APT #BadMagic
#PowerMagic variant downloaded from 176.114.9[.]192 uses Dropbox as C2
https://t.co/PZlK86xmJ0
Creates in %LOCALAPPDATA%:
WinEventCom\config
WinEventCom\manutil.vbs
№_64_ФЗ_от_26.04.2022.pdf
Task WindowsActiveXTaskTrigger launches manutil.vbs via wscript.exe https://t.co/JsfGTdn6Xh](https://pbs.twimg.com/media/Fr1V5BqWIAIHIoE.jpg)
![t3ft3lb's tweet photo. #APT #BadMagic
#PowerMagic variant downloaded from 176.114.9[.]192 uses Dropbox as C2
https://t.co/PZlK86xmJ0
Creates in %LOCALAPPDATA%:
WinEventCom\config
WinEventCom\manutil.vbs
№_64_ФЗ_от_26.04.2022.pdf
Task WindowsActiveXTaskTrigger launches manutil.vbs via wscript.exe https://t.co/JsfGTdn6Xh](https://pbs.twimg.com/media/Fr1V4W4X0AUk2zT.jpg)
![t3ft3lb's tweet photo. #APT #BadMagic
#PowerMagic variant downloaded from 176.114.9[.]192 uses Dropbox as C2
https://t.co/PZlK86xmJ0
Creates in %LOCALAPPDATA%:
WinEventCom\config
WinEventCom\manutil.vbs
№_64_ФЗ_от_26.04.2022.pdf
Task WindowsActiveXTaskTrigger launches manutil.vbs via wscript.exe https://t.co/JsfGTdn6Xh](https://pbs.twimg.com/media/Fr1V33LWYAMJGMX.png)
![t3ft3lb's tweet photo. #APT #BadMagic
#PowerMagic variant downloaded from 176.114.9[.]192 uses Dropbox as C2
https://t.co/PZlK86xmJ0
Creates in %LOCALAPPDATA%:
WinEventCom\config
WinEventCom\manutil.vbs
№_64_ФЗ_от_26.04.2022.pdf
Task WindowsActiveXTaskTrigger launches manutil.vbs via wscript.exe https://t.co/JsfGTdn6Xh](https://pbs.twimg.com/media/Fr1V3rwX0AAqr7d.png)
#APT #BadMagic
#PowerMagic variant downloaded from 176.114.9[.]192 uses Dropbox as C2
https://t.co/PZlK86xmJ0
Creates in %LOCALAPPDATA%:
WinEventCom\config
WinEventCom\manutil.vbs
№_64_ФЗ_от_26.04.2022.pdf
Task WindowsActiveXTaskTrigger launches manutil.vbs via wscript.exe
A threat actor is believed to be using new #malware programs called #CommonMagic and #PowerMagic to #phish for details of targets in disputed #Russian-controlled areas of #Ukraine.
#cybersecurity #infosec #cyberwar #phishing
https://t.co/Vi4yMcddQM
Les chercheurs @kaspersky ont découvert l' #APT #CommonMagic ciblant des organisations situées sur les zones particulièrement affectées par le conflit militaire en cours entre l’Ukraine et la Russie via la porte dérobée #PowerMagic.
En savoir plus ▶️ https://t.co/2h2r4Ebozb
New #APT group, #CommonMagic leverages #PowerMagic backdoor to target individuals in RU-UA conflict.
Full story 👇
https://t.co/0Ln77kx64K
New #APT group, #CommonMagic leverages #PowerMagic backdoor to target individuals in RU-UA conflict. Full story and #IOC on @Securelist
➡️➡️ https://t.co/TeO2fXg5mO
New APT found in the area of RU-UA conflict: administrative organizations attacked with previously unknown #PowerMagic backdoor and #CommonMagic framework 👉 https://t.co/rWQX8OXd1i
by @bzvr_ & @2igosha
Victims compromised with #PowerMagic have been additionally infected with the #CommonMagic modular framework. It uses OneDrive to download malicious modules and upload their execution results. We identified two modules: a screenshot taker and a USB file stealer. [3/4]
![bzvr_'s tweet photo. Victims compromised with #PowerMagic have been additionally infected with the #CommonMagic modular framework. It uses OneDrive to download malicious modules and upload their execution results. We identified two modules: a screenshot taker and a USB file stealer. [3/4] https://t.co/YmPSkB183G](https://pbs.twimg.com/media/Frupgv1XwAIChrB.jpg)
Observed victims downloaded a malicious ZIP archive with a lure document and a malicious LNK file that deploys the PowerShell #PowerMagic backdoor. It uses cloud storages such as OneDrive or Dropbox to receive PowerShell commands and execute them. [2/4]
![bzvr_'s tweet photo. Observed victims downloaded a malicious ZIP archive with a lure document and a malicious LNK file that deploys the PowerShell #PowerMagic backdoor. It uses cloud storages such as OneDrive or Dropbox to receive PowerShell commands and execute them. [2/4] https://t.co/14BNeuGA1N](https://pbs.twimg.com/media/Frupf_sWcAErNqo.jpg)
Magic is here! We have discovered a previously unknown #APT that has been attacking organizations in the area affected by the conflict between Russia and Ukraine. Observed victims were compromised with previously unknown implants that we dubbed #PowerMagic and #CommonMagic. [1/4]
![bzvr_'s tweet photo. Magic is here! We have discovered a previously unknown #APT that has been attacking organizations in the area affected by the conflict between Russia and Ukraine. Observed victims were compromised with previously unknown implants that we dubbed #PowerMagic and #CommonMagic. [1/4] https://t.co/uO84FjRjw0](https://pbs.twimg.com/media/FrupfUcXoAA2Vix.jpg)
Today's #retrogaming on the #ZXSpectrum #PowerMagic, a Spanish game with large sprites and lots of colours but a little sluggish on the controls and the riot of colour on the screen can leave you slightly confused about what is going on, but, still, look at those colours!
Last Seen Hashtags on Sotwe
hidden cam
Seen from Qatar
istanbulgay
Seen from Turkey
Grok
Seen from Thailand
tamilgirl
BaitServices
Seen from Germany
nolimit(*) filter:native_video
Seen from United States
cuckold video
Seen from United States
sprunkioren
Seen from United States
afyonerenler
Seen from Turkey
femboybandung
Seen from Indonesia
Most Popular Users
Elon Musk 
@elonmusk
240.4M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.7M followers
Cristiano Ronaldo
@cristiano
110.1M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.5M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.8M followers
KATY PERRY
@katyperry
87.4M followers
Taylor Swift
@taylorswift13
81.2M followers
Lady Gaga
@ladygaga
72.8M followers
Kim Kardashian
@kimkardashian
69.7M followers
Virat Kohli
@imvkohli
69.5M followers
YouTube
@youtube
68.7M followers
Bill Gates
@billgates
63.7M followers
The Ellen Show
@theellenshow
62.5M followers
Neymar Jr
@neymarjr
62.2M followers
CNN
@cnn
61.9M followers
X
@x
60.8M followers
Selena Gomez
@selenagomez
60.5M followers