XDRecon

Description

(ESET) This is the most basic type of stealer plug-in. It gathers basic information about the victim machines (computer name, username, volume serial number) and writes it in %APPDATA%\Temp.NET\hdir.dat. It uploads this file to the C&C server and finally deletes it before exiting.

Names

Name
XDRecon

Type

Reconnaissance
Info stealer

Information

https://vblocalhost.com/uploads/VB2020-Faou-Labelle.pdf

Other Information

Uuid

a859dde1-21f4-48da-bdfa-d493185035e2

Last Card Change

2020-10-19

Threat Intelligence Garden

Explorer

XDRecon

XDRecon

Description

Names

Category

Type

Information

Other Information

Uuid

Last Card Change

Graph View

Table of Contents

Backlinks