QUEUESEED

Description

(BleepingComputer) C++ backdoor for Windows that collects basic system information and executes commands from a remote server. It handles file operations, command execution, and configuration updates and can delete itself. Communications are secured via HTTPS, and data is encrypted using RSA and AES. It stores its data and maintains persistence on infected systems by encrypting its configuration in the Windows registry and setting up tasks or registry entries for automatic execution.

Names

Name
QUEUESEED
IcyWell
Kapeka

Type

Backdoor

Information

https://www.bleepingcomputer.com/news/security/russian-sandworm-hackers-targeted-20-critical-orgs-in-ukraine/

Other Information

Uuid

4365d4bb-3b6d-4278-bfa9-3e8962ee0a71

Last Card Change

2024-04-23

Threat Intelligence Garden

Explorer

QUEUESEED

QUEUESEED

Description

Names

Category

Type

Information

Other Information

Uuid

Last Card Change

Graph View

Table of Contents

Backlinks