xDll

Description

(Positive Technologies) The backdoor is a file written in C++ and compiled in Microsoft Visual Studio using the MFC library. It also has a plausible compilation date of February 10, 2020, 6:14:37 PM.

Names

Name
xDll

Category

Malware

Type

• Reconnaissance
• Backdoor
• Info stealer
• Downloader
• Exfiltration

Information

• https://www.ptsecurity.com/ww-en/analytics/pt-esc-threat-intelligence/shadowpad-new-activity-from-the-winnti-group/

Other Information

Uuid

0e967323-fabd-43ca-97c3-7d18eeb4ce51

Last Card Change

2020-10-19