SensePost | Recreating known universal windows password backdoors with frida
Tags
Show in Graph
Common Information
Type Value
UUID 7bb59149-b54d-408a-8439-39fcc2ee4011
Fingerprint 2a0da121682664b1
Analysis status DONE
Considered CTI value 0
Text language
Published April 23, 2019, midnight
Added to db Jan. 18, 2023, 10:27 p.m.
Last updated Nov. 17, 2024, 11:40 p.m.
Headline
Title SensePost | Recreating known universal windows password backdoors with frida
Detected Hints/Tags/Attributes 0/0/11
Source URLs
Redirection Url
Details Source https://sensepost.com/blog/2019/recreating-known-universal-windows-password-backdoors-with-frida/
URL Provider
Details Provider Source level domain
Details sensepost.com sensepost.com
Attributes
Details Type #Events CTI Value
Details Domain 5 
hashlib.new
Details Domain 4128 
github.com
Details Domain 1 
this.compare
Details File 478 
lsass.exe
Details File 11 
msv1_0.dll
Details File 748 
kernel32.dll
Details File 533 
ntdll.dll
Details File 1 
rtlcomparememory_backdoor.js
Details File 10 
'ntdll.dll
Details File 9 
backdoor.js
Details File 1 
msvppasswordvalidate_backdoor.js