Weiterentwicklung anspruchsvoller Spyware: von Agent.BTZ zu ComRAT
Tags
| maec-delivery-vectors: | Watering Hole |
| attack-pattern: | Data Component Object Model - T1559.001 Malware - T1587.001 Malware - T1588.001 Server - T1583.004 Server - T1584.004 Software - T1592.002 Tool - T1588.002 Rootkit - T1014 Rootkit |
Common Information
| Type | Value |
|---|---|
| UUID | 92babc6c-eeac-4102-8064-ebdafd7c4f46 |
| Fingerprint | e3a57fab986ad5da |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | July 16, 2021, 12:50 p.m. |
| Added to db | Sept. 26, 2022, 9:30 a.m. |
| Last updated | Nov. 17, 2024, 6:49 p.m. |
| Headline | Weiterentwicklung anspruchsvoller Spyware: von Agent.BTZ zu ComRAT |
| Title | Weiterentwicklung anspruchsvoller Spyware: von Agent.BTZ zu ComRAT |
| Detected Hints/Tags/Attributes | 25/2/52 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | File | 1260 | explorer.exe |
|
| Details | md5 | 1 | b41fbdd02e4d54b4bc28eda99a8c1502 |
|
| Details | md5 | 1 | 93827a6c77e84ffdd9c793d485d3df6e |
|
| Details | md5 | 1 | 3e9c7ef54ea3d55d5b53abab4c3e2385 |
|
| Details | md5 | 1 | b9ed8876ef5a05ba364a9cdbdf4f184d |
|
| Details | md5 | 1 | d8f98f64687b05a62c81ce9e52dd808d |
|
| Details | md5 | 1 | 2cf64ff9dad8d64ee9322e390d4f7283 |
|
| Details | md5 | 1 | 24e679155697bd31b34036a44d4346a7 |
|
| Details | md5 | 1 | 53b8b9f779b1d1d298884d1c21313ab3 |
|
| Details | md5 | 1 | 69ae46fedf3c18ff36fc850e0baa9365 |
|
| Details | md5 | 1 | e05511a84eb345954b94f1e05c78bf22 |
|
| Details | md5 | 1 | f93ce76f6580d68a95260198b2d6feaa |
|
| Details | md5 | 1 | db5d1583704b0fb6d1cff0b62a512a7d |
|
| Details | md5 | 1 | 2b348c225985679f62e50b28bdb74ac9 |
|
| Details | md5 | 1 | af3f0efbd69905123f7df958cc88dff9 |
|
| Details | md5 | 1 | e825c4961293ad45883cd52f38695283 |
|
| Details | md5 | 1 | 2a67b53b7ef7b70763658ca7f60e7005 |
|
| Details | md5 | 1 | bbf569176ec7ec611d8a000b50cdb754 |
|
| Details | md5 | 1 | e5c76e67128e48cb0f003c2beee47d1f |
|
| Details | md5 | 1 | 8e5da63369d20e1d2c530bf806996285 |
|
| Details | md5 | 1 | 78d3f074b70788897ae7e20e5137bf47 |
|
| Details | md5 | 1 | 986f263ca2c529d5d28bce3c62f858ea |
|
| Details | md5 | 1 | 4f732099caf5d21729572cec229f7614 |
|
| Details | md5 | 1 | 5336c24a3399f522f8e19d9c54a069c6 |
|
| Details | md5 | 1 | dc1c54751f94b6fdf0b6ecdd64e67701 |
|
| Details | md5 | 1 | 40335fca60acd05f1428b13a9a3c1228 |
|
| Details | md5 | 1 | 72663ee9d3efaff959bff4ce25bd37a6 |
|
| Details | md5 | 1 | 5ef72904221aa4090a262a24714054f0 |
|
| Details | md5 | 1 | 331eca9c7d9fd9cbe7cd192af09880a3 |
|
| Details | md5 | 1 | db1156b072d58acdac1aeab9af2160a2 |
|
| Details | md5 | 1 | 74dbea70bfb15db31bb9f757ed4bb1a0 |
|
| Details | md5 | 1 | eb928bca5675722c7e9e2b09eec1158a |
|
| Details | md5 | 1 | 162f415abad9708aa61db8e03bcf2f3c |
|
| Details | md5 | 1 | 448524fd62dec1151c75b55b86587784 |
|
| Details | md5 | 1 | 29bb70a40689e9e665d15716519bacfd |
|
| Details | md5 | 1 | 38d6719d6a266c6cefb8626c57378927 |
|
| Details | md5 | 1 | 02eda1effde92bdf8462abcf40c4f776 |
|
| Details | md5 | 1 | 5121ce1f96d74076df1c39748e019f42 |
|
| Details | md5 | 1 | 28dc1ca683d6a14d0d1794a68c477604 |
|
| Details | md5 | 1 | 40bd7846553550f38e458b8493824cb4 |
|
| Details | md5 | 1 | ba0c777317461ed57a85ffae277044dc |
|
| Details | md5 | 1 | b86137fa5a232c614ec5405be4d13b37 |
|
| Details | md5 | 1 | 7872c1d88fe21d8a85f160a6666c76e8 |
|
| Details | md5 | 2 | 83a48760e92bf30961b4a943d3095b0a |
|
| Details | md5 | 1 | 3d65c18d09f47547f85c631ebeeda482 |
|
| Details | md5 | 2 | ec7e3cfaeaac0401316d66e964be684e |
|
| Details | md5 | 2 | b407b6e5b4046da226d6e189a67f62ca |
|
| Details | Pdb | 2 | c:\projects\chinckskx64\debug\chinch.pdb |
|
| Details | Pdb | 2 | c:\projects\chinckskx64\release\libadcodec.pdb |
|
| Details | Pdb | 2 | c:\projects\chinckskx64\x64\release\libadcodec.pdb |
|
| Details | Pdb | 2 | e:\old_comp\_chinch\chinch\trunk\debug\chinch.pdb |
|
| Details | Pdb | 2 | c:\projects\chinchsk\release\libadcodec.pdb |