Seasalt

Description

The SEASALT malware family communicates via a custom binary protocol. It is capable of gathering some basic system information, file system manipulation, file upload and download, process creation and termination, and spawning an interactive reverse shell. The malware maintains persistence by installing itself as a service.

Names

Name
Seasalt

Type

Reconnaissance
Backdoor
Info stealer
Exfiltration

Information

https://www.mcafee.com/enterprise/en-us/assets/reports/rp-operation-oceansalt.pdf
http://contagiodump.blogspot.com/2013/03/mandiant-apt1-samples-categorized-by.html

Mitre Attack

https://attack.mitre.org/software/S0345/

Malpedia

https://malpedia.caad.fkie.fraunhofer.de/details/win.seasalt

Alienvault Otx

https://otx.alienvault.com/browse/pulses?q=tag:seasalt

Other Information

Uuid

24120d91-700f-4c79-a354-67675ca35f9a

Last Card Change

2020-04-23

Threat Intelligence Garden

Explorer

Seasalt

Seasalt

Description

Names

Category

Type

Information

Mitre Attack

Malpedia

Alienvault Otx

Other Information

Uuid

Last Card Change

Graph View

Table of Contents

Backlinks