Karba

Description

(Kaspersky) This malware is 220Kb in size. It was built as MFC framework application with a lot of extra calls that should have complicated the analysis of the sample. It mimics a GUI desktop application but it does not create any visible windows or dialogs to interact with local users. The Trojan collects data about the system and anti-malware software installed on it, and uploads that data to Darkhotel command and control servers.

Names

Name
Karba
Trojan.Win32.Karba.e

Type

Reconnaissance
Backdoor

Information

https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2018/03/08070903/darkhotel_kl_07.11.pdf
https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2018/03/08070901/darkhotelappendixindicators_kl.pdf

Other Information

Uuid

9af4a581-6acd-4af5-b3ed-058a21fc90cd

Last Card Change

2020-04-20

Threat Intelligence Garden

Explorer

Karba

Karba

Description

Names

Category

Type

Information

Other Information

Uuid

Last Card Change

Graph View

Table of Contents

Backlinks