Jump to content
OpenSecurity.global
  • Recently Browsing   0 members

    No registered users viewing this page.

Kevin Beaumont

Backdoor'd to hell Chinese apps

Recommended Posts

SHA256: 52870d7111aa983f09bbced0cc346863fc3963941acebca90008cf255fc7b864

It's amazing the amount of crap this installs.

image.png.dad09fffe0344122949ed8d5695a21e8.png

Behaviour wise it's pages and pages and pages of indicators on ThreatGrid, it's quite impressive.

image.png.ffa8d82f77412ea20c1de33c23386549.png

I have lots of these and they trigger RDP YARA rules for MS_T120, because why not.

Edited by Kevin Beaumont

Share this post


Link to post

According to the "极速下载器" (Ultra-speed Downloader), the three Chinese AV tools (360 AV, QQ Butler, and Golden Mountain Virus) didn't detect crap. 

Because you know, they are all known to be reliable...🙃

Share this post


Link to post

  • Members online now

    No members to show

×
×
  • Create New...

Important Information

We use cookies as we're cookie monsters. Privacy Policy