TabMsgSQL

Description

This malware family is a full-featured backdoor capable of file uploading and downloading, arbitrary execution of programs, and providing a remote interactive command shell. All communications with the C2 server are sent over HTTP to a static URL, appending various URL parameters to the request. Some variants use a slightly different URL.

Names

Name
TabMsgSQL
LETSGO

Type

Backdoor
Exfiltration

Information

http://contagiodump.blogspot.com/2013/03/mandiant-apt1-samples-categorized-by.html

Malpedia

https://malpedia.caad.fkie.fraunhofer.de/details/win.tabmsgsql

Other Information

Uuid

980e694a-7e8e-4928-aec0-a19cc3e05a7c

Last Card Change

2020-04-23

Threat Intelligence Garden

Explorer

TabMsgSQL

TabMsgSQL

Description

Names

Category

Type

Information

Malpedia

Other Information

Uuid

Last Card Change

Graph View

Table of Contents

Backlinks