Sibot

Description

(Microsoft) Sibot is a dual-purpose malware implemented in VBScript. It is designed to achieve persistence on the infected machine then download and execute a payload from a remote C2 server. The VBScript file is given a name that impersonates legitimate Windows tasks and is either stored in the registry of the compromised system or in an obfuscated format on disk. The VBScript is then run via a scheduled task.

Names

Name
Sibot

Type

Backdoor

Information

https://www.microsoft.com/security/blog/2021/03/04/goldmax-goldfinder-sibot-analyzing-nobelium-malware/

Mitre Attack

https://attack.mitre.org/software/S0589/

Other Information

Uuid

802e155d-1e1c-43b2-9ec9-a790dc43ac74

Last Card Change

2022-12-30

Threat Intelligence Garden

Explorer

Sibot

Sibot

Description

Names

Category

Type

Information

Mitre Attack

Other Information

Uuid

Last Card Change

Graph View

Table of Contents

Backlinks