SysUpdate
Description
(SecureWorks) SysUpdate is a multi-stage malware used exclusively by BRONZE UNION. It has been delivered by multiple methods.
Names
| Name |
|---|
| SysUpdate |
| FOCUSFJORD |
| HyperSSL |
| Soldier |
Category
Malware
Type
- Backdoor
- Loader
- Downloader
Information
- https://www.secureworks.com/research/a-peek-into-bronze-unions-toolbox
- https://research.nccgroup.com/2018/05/18/emissary-panda-a-potential-new-malicious-tool/
- https://www.trendmicro.com/en_us/research/21/d/iron-tiger-apt-updates-toolkit-with-evolved-sysupdate-malware-va.html
- https://www.fireeye.com/blog/threat-research/2021/08/unc215-chinese-espionage-campaign-in-israel.html
Mitre Attack
Malpedia
Other Information
Uuid
7ee199cb-0299-4e33-9082-efc768f5096c
Last Card Change
2022-12-30