TurlaChopper

Description

(ESET) In addition to NETVulture, on the Microsoft Exchange server of the same Ministry, we found a variant of the China Chopper webshell we called TurlaChopper. We believe that the initial access leveraged a remote code execution vulnerability in the Exchange server program, namely CVE-2020-0688.

Names

Name
TurlaChopper

Type

Backdoor

Information

https://www.welivesecurity.com/wp-content/uploads/2021/05/eset_threat_report_t12021.pdf

Other Information

Uuid

dde3f80f-2f25-4683-9b81-5a92a306b9ad

Last Card Change

2022-02-10

Threat Intelligence Garden

Explorer

TurlaChopper

TurlaChopper

Description

Names

Category

Type

Information

Other Information

Uuid

Last Card Change

Graph View

Table of Contents

Backlinks