SilentGh0st

Description

(Bitdefender) SilentGh0st communicates with the C2 over TCP, encrypting the traffic with TLS using “OpenSSL 0.9.8zg 11 Jun 2015”. The C2 address is encrypted in the same manner as in TranslucentGh0st - byte-XOR with 0x28 and SUB 0xC.

Names

Name
SilentGh0st

Category

Malware

Type

• Backdoor

Information

• https://blogapp.bitdefender.com/labs/content/files/2024/05/Bitdefender-Report-DeepDive-creat7721-en_EN.pdf

Malpedia

• https://malpedia.caad.fkie.fraunhofer.de/details/win.silentgh0st

Other Information

Uuid

35844043-1c40-4dc0-988a-bad55862a53e

Last Card Change

2024-12-27