Helauto

Description

This family of malware is designed to operate as a service and provides remote command execution and file transfer capabilities to a fixed IP address or domain name. All communication with the C2 server happens over port 443 using SSL. This family can be installed as a service DLL. Some variants allow for uninstallation.

Names

Name
Helauto

Type

Backdoor
Exfiltration

Information

http://contagiodump.blogspot.lu/2013/03/mandiant-apt1-samples-categorized-by.html
http://contagiodump.blogspot.com/2013/03/mandiant-apt1-samples-categorized-by.html

Malpedia

https://malpedia.caad.fkie.fraunhofer.de/details/win.helauto

Other Information

Uuid

985e0fb9-885b-498a-933c-b98b30dc4684

Last Card Change

2020-04-23

Threat Intelligence Garden

Explorer

Helauto

Helauto

Description

Names

Category

Type

Information

Malpedia

Other Information

Uuid

Last Card Change

Graph View

Table of Contents

Backlinks