ManItsMe

Description

This family of malware will beacon out at random intervals to the remote attacker. The attacker can run programs, execute arbitrary commands, and easily upload and download files. This IOC looks for both the dropper file and the backdoor.

Names

Name
ManItsMe

Category

Malware

Type

• Dropper
• Backdoor
• Exfiltration

Information

• https://www.fireeye.com/content/dam/fireeye-www/services/pdfs/mandiant-apt1-report.pdf
• http://contagiodump.blogspot.com/2013/03/mandiant-apt1-samples-categorized-by.html

Malpedia

• https://malpedia.caad.fkie.fraunhofer.de/details/win.manitsme

Other Information

Uuid

6b34880a-0238-4f93-84c1-a00ad38a3202

Last Card Change

2020-04-23