Joanap

Description

(US-CERT) Joanap malware is a fully functional RAT that is able to receive multiple commands, which can be issued by HIDDEN COBRA actors remotely from a command and control server. Joanap typically infects a system as a file dropped by other HIDDEN COBRA malware, which users unknowingly downloaded either when they visit sites compromised by HIDDEN COBRA actors, or when they open malicious email attachments.

Names

Name
Joanap
SierraJuliett-MikeOne
SierraJuliett-MikeTwo

Type

Backdoor
Info stealer

Information

https://www.us-cert.gov/ncas/alerts/TA18-149A
https://www.acalvio.com/lateral-movement-technique-employed-by-hidden-cobra/

Malpedia

https://malpedia.caad.fkie.fraunhofer.de/details/win.joanap

Alienvault Otx

https://otx.alienvault.com/browse/pulses?q=tag:joanap

Other Information

Uuid

471c76f9-bbf1-4794-a1ac-4961ff3436af

Last Card Change

2020-05-14

Threat Intelligence Garden

Explorer

Joanap

Joanap

Description

Names

Category

Type

Information

Malpedia

Alienvault Otx

Other Information

Uuid

Last Card Change

Graph View

Table of Contents

Backlinks