Tropic Trooper: AdaptixC2 + Custom Beacon

ThreatLabz provides a technical analysis of a Tropic Trooper campaign that delivered a trojanized SumatraPDF (TOSHIS loader) which drops a decoy PDF while loading an AdaptixC2 Beacon configured to use a GitHub-based listener; the attackers used the beacon for reconnaissance and then deployed VS Code tunnels and other trojanized applications for remote access, with staging servers also hosting EntryShell and Cobalt Strike samples.