sip_telephone
Description
(Trend Micro) sip_telephone, also named in the PDB path as such, uses Windows Management Instrumentation (WMI) to get the AV installed in the machine, its computer name, and processor ID, among others. It performs tasks in an endless loop, with 100 seconds of sleep time.
Names
| Name |
|---|
| sip_telephone |
Category
Malware
Type
- Reconnaissance
Information
- https://documents.trendmicro.com/assets/research-deciphering-confucius-cyberespionage-operations.pdf
Other Information
Uuid
2024b85f-ceda-41af-b11a-85d77d136e85
Last Card Change
2020-04-20