RIFLESPINE

Description

(Mandiant) RIFLESPINE is a cross-platform backdoor that leverages Google Drive to transfer files and execute commands. It adopts the CryptoPP library to implement the AES algorithm to encrypt and decrypt the data transmitted between an affected machine and the threat actor.

Names

Name
RIFLESPINE

Type

Backdoor

Information

https://cloud.google.com/blog/topics/threat-intelligence/uncovering-unc3886-espionage-operations

Other Information

Uuid

d9c072a3-0aa5-426c-b55c-1dc582c5596d

Last Card Change

2024-08-26

Threat Intelligence Garden

Explorer

RIFLESPINE

RIFLESPINE

Description

Names

Category

Type

Information

Other Information

Uuid

Last Card Change

Graph View

Table of Contents

Backlinks