DRIFTPIN

Description

Driftpin is a small and simple backdoor that enables the attackers to assess the victim. When executed the trojan connects to a C&C server and receives commands to grab screenshots, enumerate running processes and get information about the system and campaign ID.

Names

Name
DRIFTPIN
Toshliph
Spy.Agent.ORM

Type

Reconnaissance
Backdoor
Info stealer

Information

https://www.fireeye.com/blog/threat-research/2017/06/behind-the-carbanak-backdoor.html
https://summit.fireeye.com/content/dam/fireeye-www/summit/cds-2018/presentations/cds18-technical-s05-att&cking-fin7.pdf
https://www.welivesecurity.com/2015/09/08/carbanak-gang-is-back-and-packing-new-guns/

Malpedia

https://malpedia.caad.fkie.fraunhofer.de/details/win.driftpin

Other Information

Uuid

5237bab9-26a6-4f50-9d15-ecd3d9bdb811

Last Card Change

2020-05-13

Threat Intelligence Garden

Explorer

DRIFTPIN

DRIFTPIN

Description

Names

Category

Type

Information

Malpedia

Other Information

Uuid

Last Card Change

Graph View

Table of Contents

Backlinks