Saitama

Description

(Malwarebytes) Saitama backdoor abuses the DNS protocol for its command and control communications. This is stealthier than other communication methods, such as HTTP. Also, the actor cleverly uses techniques such as compression and long random sleep times. They employed these tricks to disguise malicious traffic in between legitimate traffic.

Names

Name
Saitama
Saitama Backdoor
AMATIAS

Type

Backdoor

Information

https://blog.malwarebytes.com/threat-intelligence/2022/05/apt34-targets-jordan-government-using-new-saitama-backdoor/

Malpedia

https://malpedia.caad.fkie.fraunhofer.de/details/win.saitama

Other Information

Uuid

c6b4335f-c2fe-4109-971f-12c06e9ec7ef

Last Card Change

2023-11-30

Threat Intelligence Garden

Explorer

Saitama

Saitama

Description

Names

Category

Type

Information

Malpedia

Other Information

Uuid

Last Card Change

Graph View

Table of Contents

Backlinks