EmpireDNSAgent

Description

(Group-IB) The attacks involved a new tool, which is downloaded by the main Trojan Silence.Main and based on the EmpireProject and dnscat2 open source projects for penetration testing. Group-IB dubbed the tool EmpireDNSAgent or EDA.

Names

Name
EmpireDNSAgent
EDA

Type

Backdoor
Tunneling

Information

https://www.group-ib.com/resources/threat-research/silence_2.0.going_global.pdf

Other Information

Uuid

53de6583-3773-4838-bd45-451c97831322

Last Card Change

2020-04-20

Threat Intelligence Garden

Explorer

EmpireDNSAgent

EmpireDNSAgent

Description

Names

Category

Type

Information

Other Information

Uuid

Last Card Change

Graph View

Table of Contents

Backlinks