mirror of
https://github.com/MISP/misp-galaxy.git
synced 2024-11-22 23:07:19 +00:00
add BumbleBee backdoor
This commit is contained in:
parent
258515f9a8
commit
705d0d2e72
1 changed files with 23 additions and 1 deletions
|
@ -8570,7 +8570,29 @@
|
||||||
},
|
},
|
||||||
"uuid": "0bdb6f1c-1229-4556-a535-7444ddfbd7a9",
|
"uuid": "0bdb6f1c-1229-4556-a535-7444ddfbd7a9",
|
||||||
"value": "GootLoader"
|
"value": "GootLoader"
|
||||||
|
},
|
||||||
|
{
|
||||||
|
"description": "BumbleBee is a modular backdoor that comprises two applications, a server and a client application (a master and slaver application, respectively in the malware’s jargon). Once the client application is deployed on the target computer (these are commonly local government devices), threat actors can control the machine using the server module. Let us take a deeper look into this backdoor.",
|
||||||
|
"meta": {
|
||||||
|
"refs": [
|
||||||
|
"https://www.trendmicro.com/en_us/research/22/i/buzzing-in-the-background-bumblebee-a-new-modular-backdoor-evolv.html"
|
||||||
|
],
|
||||||
|
"type": [
|
||||||
|
"backdoor"
|
||||||
|
]
|
||||||
|
},
|
||||||
|
"related": [
|
||||||
|
{
|
||||||
|
"dest-uuid": "96b2b31e-b191-43c4-9929-48ba1cbee62c",
|
||||||
|
"tags": [
|
||||||
|
"estimative-language:likelihood-probability=\"likely\""
|
||||||
|
],
|
||||||
|
"type": "related-to"
|
||||||
}
|
}
|
||||||
],
|
],
|
||||||
"version": 153
|
"uuid": "6fc4beee-b922-4d25-833d-8fb574a3c56e",
|
||||||
|
"value": "BumbleBee"
|
||||||
|
}
|
||||||
|
],
|
||||||
|
"version": 154
|
||||||
}
|
}
|
||||||
|
|
Loading…
Reference in a new issue