Helminth

Description

Helminth is a backdoor that has at least two variants - one written in VBScript and PowerShell that is delivered via a macros in Excel spreadsheets, and one that is a standalone Windows executable.

Names

Name
Helminth

Type

Backdoor

Information

https://unit42.paloaltonetworks.com/the-oilrig-campaign-attacks-on-saudi-arabian-organizations-deliver-helminth-backdoor/
https://www.fireeye.com/blog/threat-research/2016/05/targeted_attacksaga.html
https://unit42.paloaltonetworks.com/dns-tunneling-in-the-wild-overview-of-oilrigs-dns-tunneling/
http://researchcenter.paloaltonetworks.com/2016/10/unit42-oilrig-malware-campaign-updates-toolset-and-expands-targets/

Mitre Attack

https://attack.mitre.org/software/S0170/

Malpedia

https://malpedia.caad.fkie.fraunhofer.de/details/win.helminth

Alienvault Otx

https://otx.alienvault.com/browse/pulses?q=tag:Helminth

Other Information

Uuid

36781ff8-6907-4f06-9ce6-d1f4575b3f71

Last Card Change

2020-05-13

Threat Intelligence Garden

Explorer

Helminth

Helminth

Description

Names

Category

Type

Information

Mitre Attack

Malpedia

Alienvault Otx

Other Information

Uuid

Last Card Change

Graph View

Table of Contents

Backlinks