Stealthy MerDoor malware uncovered after five years of attacks
Tags
country: China
maec-delivery-vectors: Watering Hole
attack-pattern: Data Credentials - T1589.001 Dll Side-Loading - T1574.002 Dns - T1071.004 Dns - T1590.002 Keylogging - T1056.001 Keylogging - T1417.001 Malware - T1587.001 Malware - T1588.001 Phishing - T1660 Phishing - T1566 Scheduled Task - T1053.005 Server - T1583.004 Server - T1584.004 Ssh - T1021.004 Tool - T1588.002 Vulnerabilities - T1588.006 Dll Side-Loading - T1073 Rootkit - T1014 Scheduled Task - T1053 Rootkit
Show in Graph
Common Information
Type Value
UUID c18b7be4-8582-4c6e-985d-9a17ee0ce715
Fingerprint ae91818aa1538415
Analysis status DONE
Considered CTI value 2
Text language
Published May 15, 2023, midnight
Added to db May 15, 2023, 7:46 p.m.
Last updated Nov. 17, 2024, 6:54 p.m.
Headline Stealthy MerDoor malware uncovered after five years of attacks
Title Stealthy MerDoor malware uncovered after five years of attacks
Detected Hints/Tags/Attributes 49/3/7
Source URLs
Redirection Url
Details Source https://www.bleepingcomputer.com/news/security/stealthy-merdoor-malware-uncovered-after-five-years-of-attacks/
URL Provider
Details Provider Source level domain
Details bleepingcomputer.com www.bleepingcomputer.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 279 BleepingComputer https://www.bleepingcomputer.com/feed/ 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details File 1 
'perfhost.exe
Details File 17 
'svchost.exe
Details File 3 
formdii.dll
Details File 7 
formdll.dll
Details Threat Actor Identifier - APT 66 
APT17
Details Threat Actor Identifier - APT 522 
APT41
Details Threat Actor Identifier - APT 297 
APT27