PcExter

Description

(Kaspersky) This is another uploader used to exfiltrate archive files to Microsoft OneDrive. This tool was distributed as a DLL file named Vspmsg.dll that was executed using the DLL side-loading technique. As a loader, the tool uses a legitimate executable file from Visual Studio, VSPerfCmd, which is used to collect performance data.

Names

Name
PcExter

Type

Exfiltration

Information

https://securelist.com/toddycat-keep-calm-and-check-logs/110696/

Mitre Attack

https://attack.mitre.org/software/S1102

Other Information

Uuid

716cd49c-608b-4e06-82b3-2443ddda8d44

Last Card Change

2024-06-19

Threat Intelligence Garden

Explorer

PcExter

PcExter

Description

Names

Category

Type

Information

Mitre Attack

Other Information

Uuid

Last Card Change

Graph View

Table of Contents

Backlinks