PowerLess Backdoor

Description

(Cybereason) A novel and previously undocumented PowerShell backdoor related to the Phosphorus group was discovered by the Cybereason Nocturnus Team and dubbed PowerLess Backdoor. It supports downloading additional payloads, such as a keylogger and an info stealer.

Names

Name
PowerLess Backdoor

Category

Malware

Type

• Backdoor
• Downloader
• Info stealer
• Keylogger

Information

• https://www.cybereason.com/blog/powerless-trojan-iranian-apt-phosphorus-adds-new-powershell-backdoor-for-espionage
• https://www.volexity.com/blog/2024/02/13/charmingcypress-innovating-persistence/

Other Information

Uuid

1f6197d2-281c-4a65-af06-c406ab70a97d

Last Card Change

2024-03-06