COLDCAT

Description

(Mandiant) COLDCAT is a complex downloader. COLDCAT generates unique host identifier information, and beacons it to a C2 that is specified in a separate file via POST request with the data in the cookie header. After a brief handshake, the malware expects base64 encoded shellcode to execute in response.

Names

Name
COLDCAT

Type

Downloader

Information

https://www.mandiant.com/resources/blog/3cx-software-supply-chain-compromise

Other Information

Uuid

e00ea69d-da41-4489-9936-0e892e128cfc

Last Card Change

2023-04-26

Threat Intelligence Garden

Explorer

COLDCAT

COLDCAT

Description

Names

Category

Type

Information

Other Information

Uuid

Last Card Change

Graph View

Table of Contents

Backlinks