BrittleBush

Description

(Proofpoint) Later versions of the RAR files that deliver NimbleMamba also included a small trojan application Proofpoint dubbed BrittleBush (2E4671C517040CBD66A1BE0F04FB8F2AF7064FEF2B5EE5E33D1F9D347E4C419F). This trojan communicated with easyuploadservice[.]com and received commands as base64 encoded JSON structure.

Names

Name
BrittleBush

Type

Backdoor

Information

https://www.proofpoint.com/us/blog/threat-insight/ugg-boots-4-sale-tale-palestinian-aligned-espionage

Malpedia

https://malpedia.caad.fkie.fraunhofer.de/details/win.brittle_bush

Other Information

Uuid

ee2d3147-fb2a-406a-a3f4-01c9167be035

Last Card Change

2022-12-27

Threat Intelligence Garden

Explorer

BrittleBush

BrittleBush

Description

Names

Category

Type

Information

Malpedia

Other Information

Uuid

Last Card Change

Graph View

Table of Contents

Backlinks