HOTCROISSANT

Description

(US-CERT) This report looks at a full-featured beaconing implant. This sample performs a custom XOR network encoding and is capable of many features including conducting system surveys, file upload/download, process and command execution, and performing screen captures.

Names

Name
HOTCROISSANT
HotCroissant

Type

Reconnaissance
Backdoor
Info stealer

Information

https://www.us-cert.gov/ncas/analysis-reports/ar20-045d
https://www.carbonblack.com/2020/04/16/vmware-carbon-black-tau-threat-analysis-the-evolution-of-lazarus/

Mitre Attack

https://attack.mitre.org/software/S0431/

Malpedia

https://malpedia.caad.fkie.fraunhofer.de/details/win.hotcroissant

Alienvault Otx

https://otx.alienvault.com/browse/pulses?q=tag:HOTCROISSANT

Other Information

Uuid

4d29bfd4-846b-4459-88ca-699f6537a528

Last Card Change

2022-12-30

Threat Intelligence Garden

Explorer

HOTCROISSANT

HOTCROISSANT

Description

Names

Category

Type

Information

Mitre Attack

Malpedia

Alienvault Otx

Other Information

Uuid

Last Card Change

Graph View

Table of Contents

Backlinks