VIRTUALPIE

Description

(Mandiant) VIRTUALPIE is a lightweight backdoor written in Python that spawns a daemonized IPv6 listener on a hardcoded port on a VMware ESXi server. It supports arbitrary command line execution, file transfer capabilities, and reverse shell capabilities. Communications use a custom protocol and are encrypted using RC4.

Names

Name
VIRTUALPIE

Type

Backdoor

Information

https://cloud.google.com/blog/topics/threat-intelligence/esxi-hypervisors-malware-persistence

Other Information

Uuid

77c1d60e-6b20-4576-be17-b163b7e2746c

Last Card Change

2024-08-26

Threat Intelligence Garden

Explorer

VIRTUALPIE

VIRTUALPIE

Description

Names

Category

Type

Information

Other Information

Uuid

Last Card Change

Graph View

Table of Contents

Backlinks