Merge pull request #374 from rmkml/master

Add Parasite HTTP RAT
This commit is contained in:
Alexandre Dulaunoy 2019-04-10 09:55:21 +02:00 committed by GitHub
commit 6497d0af14
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23

View file

@ -3328,7 +3328,17 @@
}, },
"uuid": "1b6a067b-50b9-4aa7-a49b-823e94e210fe", "uuid": "1b6a067b-50b9-4aa7-a49b-823e94e210fe",
"value": "H-worm" "value": "H-worm"
},
{
"description": "The RAT, dubbed Parasite HTTP, is especially notable for the extensive array of techniques it incorporates for sandbox detection, anti-debugging, anti-emulation, and other protections. The malware is also modular in nature, allowing actors to add new capabilities as they become available or download additional modules post infection.",
"meta": {
"refs": [
"https://www.proofpoint.com/us/threat-insight/post/parasite-http-rat-cooks-stew-stealthy-tricks"
]
},
"uuid": "1b6a067c-50ba-4aa7-a59b-824e94e210fe",
"value": "Parasite-HTTP-RAT"
} }
], ],
"version": 26 "version": 27
} }