Tcp_transfer

Description

(Bitdefender) The executable binds to “0.0.0.0:8080’ address and starts listening for local connection. For each incoming connection on the local address, it creates a new connection to the C&C and start receiving and sending the data. The goal of such tool is to bypass network restriction such that the compromised machines that are not connected directly to the internet can communicate with the C&C through another compromised machine that has an internet connection.

Names

Name
Tcp_transfer

Type

Tunneling

Information

https://www.bitdefender.com/files/News/CaseStudies/study/379/Bitdefender-Whitepaper-Chinese-APT.pdf

Other Information

Uuid

c15386a1-c3f9-4c8b-ac4d-47588edbef70

Last Card Change

2021-01-06

Threat Intelligence Garden

Explorer

Tcp_transfer

Tcp_transfer

Description

Names

Category

Type

Information

Other Information

Uuid

Last Card Change

Graph View

Table of Contents

Backlinks