SideTwist

Description

(Check Point) The backdoor in this stage, is a variant we haven’t seen before in previous APT34 operations, but provides functionality which is simple and similar to other C based backdoors utilized by the group: DNSpionage and TONEDEAF and TONEDEAF 2.0.

The functionality of the backdoor includes download, upload and shell command execution.

Names

Name
SideTwist

Type

Backdoor
Downloader
Exfiltration

Information

https://research.checkpoint.com/2021/irans-apt34-returns-with-an-updated-arsenal/
https://nsfocusglobal.com/apt34-unleashes-new-wave-of-phishing-attack-with-variant-of-sidetwist-trojan/
https://www.trendmicro.com/en_fi/research/23/i/apt34-deploys-phishing-attack-with-new-malware.html

Mitre Attack

https://attack.mitre.org/software/S0610/

Malpedia

https://malpedia.caad.fkie.fraunhofer.de/details/win.sidetwist

Other Information

Uuid

0bd63c8b-6c80-46dc-8af6-8dfe4072b37a

Last Card Change

2023-10-13

Threat Intelligence Garden

Explorer

SideTwist

SideTwist

Description

Names

Category

Type

Information

Mitre Attack

Malpedia

Other Information

Uuid

Last Card Change

Graph View

Table of Contents

Backlinks