WINERACK

Description

(FireEye) WINERACK is backdoor whose primary features include user and host information gathering, process creation and termination, filesystem and registry manipulation, as well as the creation of a reverse shell that utilizes statically-linked Wine cmd.exe code to emulate Windows command prompt commands. Other capabilities include the enumeration of files, directories, services, active windows and processes.

Names

Name
WINERACK

Type

Reconnaissance
Backdoor

Information

https://www2.fireeye.com/rs/848-DID-242/images/rpt_APT37.pdf

Mitre Attack

https://attack.mitre.org/software/S0219/

Other Information

Uuid

c646cc03-d65a-4a5c-9910-82d2789624a7

Last Card Change

2020-04-23

Threat Intelligence Garden

Explorer

WINERACK

WINERACK

Description

Names

Category

Type

Information

Mitre Attack

Other Information

Uuid

Last Card Change

Graph View

Table of Contents

Backlinks