Pitty

Description

(Airbus) This RAT is the origin of the attackers’ group name. “PittyTiger” is a mutex used by the malware. “Pitty Tiger” is also a string transmitted in the network communications of the RAT.

The following commands are implemented: • File Download (get) and Upload (put) • Screen Capture 8bit (prtsc) and 16bit (prtsc2) • Remote Shell (ocmd/ccmd) • Configuration update (setserv/freshserv) • Direct command execution

Names

Name
Pitty
PittyTiger RAT

Type

Backdoor
Info stealer

Information

https://paper.seebug.org/papers/APT/APT_CyberCriminal_Campagin/2014/2014.07.11.Pitty_Tiger/Pitty_Tiger_Final_Report.pdf
https://securingtomorrow.mcafee.com/mcafee-labs/targeted-attacks-on-french-company-exploit-multiple-word-vulnerabilities/

Malpedia

https://malpedia.caad.fkie.fraunhofer.de/details/win.pittytiger_rat

Other Information

Uuid

7c481c81-7526-41ab-96a8-4477e2519b27

Last Card Change

2020-05-14

Threat Intelligence Garden

Explorer

Pitty

Pitty

Description

Names

Category

Type

Information

Malpedia

Other Information

Uuid

Last Card Change

Graph View

Table of Contents

Backlinks