hcdLoader

Description

(Anomali) The Wekby group has exhibited a preference to use a tool named HcdLoader which often persists as a Windows Service on externally facing servers for remote access.

Names

Name
hcdLoader

Type

Backdoor

Information

https://www.anomali.com/blog/evasive-maneuvers-the-wekby-group-attempts-to-evade-analysis-via-custom-rop

Mitre Attack

https://attack.mitre.org/software/S0071/

Other Information

Uuid

a16b2002-e66b-4202-b032-44a0d43acb65

Last Card Change

2020-04-22

Threat Intelligence Garden

Explorer

hcdLoader

hcdLoader

Description

Names

Category

Type

Information

Mitre Attack

Other Information

Uuid

Last Card Change

Graph View

Table of Contents

Backlinks