JackalSteal
Description
(Kaspersky) JackalSteal is another implant usually deployed on a few compromised machines that is used to find files of interest on the target’s system and exfiltrate them to the C2 server.
This tool can be used to monitor removable USB drives, remote shares, and all logical drives in the targeted system. The malware can work as a standard process or as a service. It cannot maintain persistence, so it must be installed by another component.
Names
| Name |
|---|
| JackalSteal |
Category
Malware
Type
- Info stealer
- Exfiltration
Information
Other Information
Uuid
ef662f31-1298-45a0-ad9a-8c823c99edb1
Last Card Change
2023-06-21