ID | Votes | Profile Description |
---|---|---|
Datper | 1 | Datper is a Delphi-coded Remote Access Trojan (RAT) likely created by the threat actor group known as BRONZE BUTLER to replace an earlier malware variant, Daserf. This malware, along with Daserf and xxmm, communicates with Command and Control (C2) servers via HTTP, encrypting commands and data using |
ID | Type | Votes | Profile Description |
---|---|---|---|
Xxmm | is related to | 2 | xxmm is a malicious software (malware) that has been observed to be used in tandem with other malware types, including Daserf and Datper, by the threat group BRONZE BUTLER. These malware communicate with their command and control (C2) servers via HTTP, encrypting commands and data using specific alg |
ID | Type | Votes | Profile Description |
---|---|---|---|
BRONZE BUTLER | Unspecified | 1 | Bronze Butler, also known as Tick, is a sophisticated threat actor primarily focusing on cyberespionage against Japanese enterprises. In March 2023, ESET reported an operation by Bronze Butler that compromised the update server of an East Asian Data Loss Prevention (DLP) company, notably serving gov |
Tick | Unspecified | 1 | Tick is a threat actor, also known as BRONZE BUTLER, that likely originates from the People's Republic of China. Secureworks® incident responders and Counter Threat Unit™ (CTU) researchers have been investigating activities associated with this group. Tick has deployed various tools and malware fami |
REDBALDKNIGHT | Unspecified | 1 | REDBALDKNIGHT, also known as BRONZE BUTLER or Tick, is an Advanced Persistent Threat (APT) group that has been active since at least 2006. The group primarily targets countries in the Asia Pacific region, with a significant focus on Japanese organizations from as early as 2008. They are known for th |
ID | Type | Votes | Profile Description |
---|---|---|---|
No associations to display |
Source | CreatedAt | Title |
---|---|---|
MITRE | a year ago | BRONZE BUTLER Hacker Group Targets Japanese Enterprises |
MITRE | a year ago | REDBALDKNIGHT’s Daserf Backdoor Now Uses Steganography |
MITRE | a year ago | Endpoint Protection - Symantec Enterprise |
MITRE | a year ago | Exchange servers under siege from at least 10 APT groups | WeLiveSecurity |