CheeseTray

Description

(US-CERT) This report analyzes a Themida packed 32-bit Windows executable, which is designed to unpack and execute a Remote Access Trojan (RAT) binary in memory. This application is designed to accept arguments during execution or can be installed as a service with command line arguments. It is designed to listen as a proxy for incoming connections containing commands or can connect to a remote server to receive commands.

Names

Name
CheeseTray
CROWDEDFLOUNDER

Type

Backdoor

Information

https://www.us-cert.gov/ncas/analysis-reports/ar20-045c

Malpedia

https://malpedia.caad.fkie.fraunhofer.de/details/win.cheesetray

Other Information

Uuid

1369ca74-ed23-426b-9b2c-d431f65b781c

Last Card Change

2021-04-24

Threat Intelligence Garden

Explorer

CheeseTray

CheeseTray

Description

Names

Category

Type

Information

Malpedia

Other Information

Uuid

Last Card Change

Graph View

Table of Contents

Backlinks