PowerPepper

Description

(Kaspersky) PowerPepper is a Windows in-memory PowerShell backdoor that can execute remotely sent shell commands. In strict accordance with DeathStalker’s traditions, the implant will try to evade detection or sandboxes execution with various tricks such as detecting mouse movements, filtering the client’s MAC addresses, and adapting its execution flow depending on detected antivirus products.

Names

Name
PowerPepper

Type

Backdoor

Information

https://securelist.com/what-did-deathstalker-hide-between-two-ferns/99616/

Malpedia

https://malpedia.caad.fkie.fraunhofer.de/details/ps1.powerpepper

Other Information

Uuid

5eb26475-f51f-4968-adff-5d54c103f96c

Last Card Change

2021-04-24

Threat Intelligence Garden

Explorer

PowerPepper

PowerPepper

Description

Names

Category

Type

Information

Malpedia

Other Information

Uuid

Last Card Change

Graph View

Table of Contents

Backlinks