Tag: Backdoor

Android malware which repackages legitimate apps and then releases them to a third-party store. Its main function is displaying ads.

Glupteba is a Windows backdoor which gradually matured into a botnet. By 2019 it included a C&C address update mechanism through public BitCoin lists.

The Chinese nation-state group Camaro Dragon is once again linked to a new backdoor malware, known as TinyNote, designed for intelligence-gathering purposes.

Cryptobot is an advanced cryptominer that collects the victim’s wallet and account information upon infection.

Discovered in 2020, Bazar Loader and Bazar Backdoor are used in the initial stages of infection by the WizardSpider cybercrime gang.

Gh0st is a RAT used to control infected endpoints. Gh0st is dropped by other malware to create a backdoor that enables an attacker to fully control the infected device.

Researchers from firmware security firm Eclypsium have discovered a potential backdoor-like behavior in Gigabyte systems, which exposes devices to compromise.

RomCom backdoor malware has been discovered by Trend Micro. The malware is disguised as well-known or fictional software on impersonated websites.

China-linked cyberespionage group Mustang Panda has been carrying out targeted attacks against European foreign affairs entities.

Researchers at SentinelOne have observed an increase in Geacon payloads appearing on VirusTotal, with some showing characteristics of genuine malicious attacks.