KIVARS

Description

(Trend Micro) The encryption for the initial packets sent by the BKDR_KIVARS uses RC4 as the encryption. It includes the following information:

• Victim’s IP • Possible Campaign ID • OS version • Hostname • Username • KIVARS version • Recent Document\Desktop folder • Keyboard Layout

Names

Name
KIVARS

Category

Malware

Type

  • Reconnaissance

Information

Mitre Attack

Malpedia

Alienvault Otx

Other Information

Uuid

8c076c07-b2f3-4b9e-88b5-638b31d12e2d

Last Card Change

2022-12-30