Fileless Execution Evasion

Malware evasion techniques including antivirus detection, environment profiling, adaptive persistence mechanisms, and in-memory payload execution to circumvent endpoint security controls

1 intelligence brief← Intelligence Hub

Transparent Tribe APT36: Weaponized Shortcuts and Adaptive Persistence Target Indian Government Entities

Transparent Tribe (APT36) launches a sophisticated multi-stage malware campaign using weaponized Windows shortcut files embedded with PDF content, targeting Indian government and academic institutions. The RAT adapts its persistence mechanisms based on installed antivirus products, enabling long-term covert access and intelligence collection.

Peter Chofield

Jan 4, 2026

5–7 minutes

Fileless Execution Evasion

Transparent Tribe APT36: Weaponized Shortcuts and Adaptive Persistence Target Indian Government Entities