ProxyBot

Description

(Group-IB) To enter standalone segments of a corporate network, Silence downloads the ProxyBot module. The purpose of this software is to redirect, through an infected computer, traffic from the external C&C server to the local nodes of the compromised network, which are not accessible from outside. We discovered two versions of the program: one in Delphi and one in C#.

Names

Name
ProxyBot

Type

Tunneling

Information

https://www.group-ib.com/resources/threat-research/silence_moving-into-the-darkside.pdf

Other Information

Uuid

e1ae887e-1bc8-41c7-93b1-42632679f84d

Last Card Change

2020-04-20

Threat Intelligence Garden

Explorer

ProxyBot

ProxyBot

Description

Names

Category

Type

Information

Other Information

Uuid

Last Card Change

Graph View

Table of Contents

Backlinks