ShadowPad Winnti

Description

(Kaspersky) ShadowPad: How Attackers hide Backdoor in Software used by Hundreds of Large Companies around the World.

Names

Name
ShadowPad Winnti
POISONPLUG.SHADOW
XShellGhost

Category

Malware

Type

• Backdoor

Information

• https://www.kaspersky.com/about/press-releases/2017_shadowpad-how-attackers-hide-backdoor-in-software-used-by-hundreds-of-large-companies-around-the-world
• https://securelist.com/shadowpad-in-corporate-networks/81432/
• https://cdn.securelist.com/files/2017/08/ShadowPad_technical_description_PDF.pdf
• https://st.drweb.com/static/new-www/news/2020/october/Study_of_the_ShadowPad_APT_backdoor_and_its_relation_to_PlugX_en.pdf
• https://labs.sentinelone.com/shadowpad-a-masterpiece-of-privately-sold-malware-in-chinese-espionage/
• https://www.secureworks.com/research/shadowpad-malware-analysis
• https://www.trendmicro.com/en_us/research/25/b/updated-shadowpad-malware-leads-to-ransomware-deployment.html

Malpedia

• https://malpedia.caad.fkie.fraunhofer.de/details/win.shadowpad

Other Information

Uuid

0eedd5c2-57d7-447c-954d-e0e2ade187dc

Last Card Change

2025-02-22