Date:18/09/19
The backdoor was discovered by ESET researchers who came across the backdoor, and it named Win32/StealthFalcon.
Once installed, StealthFalcon will initiate a connection with a command and control (C2) server by using the standard Windows component Background Intelligent Transfer Service (BITS) before attempting to extract files. If StealthFalcon fails to connect to one of its two C2 severs, it will remove itself. Stealth Falcon is also able to install other payloads including cryptocurrency miners and ransomware tools.
ESET’s research did not look at how StealthFalcon is deployed nor did it discuss which nation or group with which it is specifically affiliated.
Undocumented backdoor used by Stealth Falcon group
StealthFalcon is a backdoor, created in 2015 by the Stealth Falcon advanced persistent threat group for use in their own campaigns. Stealth Falcon are a threat group, active since 2012, that targets political activists and journalists in the Middle East.The backdoor was discovered by ESET researchers who came across the backdoor, and it named Win32/StealthFalcon.
Once installed, StealthFalcon will initiate a connection with a command and control (C2) server by using the standard Windows component Background Intelligent Transfer Service (BITS) before attempting to extract files. If StealthFalcon fails to connect to one of its two C2 severs, it will remove itself. Stealth Falcon is also able to install other payloads including cryptocurrency miners and ransomware tools.
ESET’s research did not look at how StealthFalcon is deployed nor did it discuss which nation or group with which it is specifically affiliated.
Views: 411
©ictnews.az. All rights reserved.Similar news
- Cellphone Use May Raise Cancer Risk
- Australian police pushes cyber safety education
- Vietnam aims to lead in e-government
- Senate Website Gets Hacked
- US builds net for cyber war games
- Japan enacts anti-computer virus law
- India passes law vs e-waste
- Anonymous Declares War On The City Of Orlando
- Microsoft highlights evolving dangers as online identity data proliferates
- Consumers want internet security to be provided by banks
- Government facilities targets of cyber attack
- South Korean web attacks might been war drill
- Sri Lanka to Establish National Passport Database to Increase Border Security
- Hi-tech crime agencies set to employ information security professionals
- Phone hacking and online campaign bring down the News of the World