PowHeartBeat

Description

(ESET) PowHeartBeat is a full-featured backdoor written in PowerShell, obfuscated using various techniques such as compression, encoding, and encryption. Based on ESET telemetry, we believe PowHeartBeat replaced CLRLoad in more recent Worok campaigns as the tool used to launch PNGLoad.

Names

Name
PowHeartBeat

Type

Backdoor

Information

https://www.welivesecurity.com/2022/09/06/worok-big-picture/

Other Information

Uuid

ce37b5d7-a9c6-4348-a4f1-f23fb90f322c

Last Card Change

2022-09-13

Threat Intelligence Garden

Explorer

PowHeartBeat

PowHeartBeat

Description

Names

Category

Type

Information

Other Information

Uuid

Last Card Change

Graph View

Table of Contents

Backlinks