HDoor

Malware updated a month ago (2024-11-29T14:07:33.812Z)
Download STIX
Preview STIX
HDoor is a malicious software (malware) that has been publicly available in Chinese forums since 2008. This malware, equipped with full backdoor capabilities, allows operators to perform a variety of tasks, making it a potent threat to computer systems. It can infect systems through suspicious downloads, emails, or websites, often without the user's knowledge. Once infiltrated, HDoor can steal personal information, disrupt operations, or even hold data hostage for ransom. The malware was notably used by Chinese groups like Naikon and Goblin Panda. The attacker executed HDoor using specific command line arguments. This customized version of the Chinese backdoor HDoor has been utilized in several cyber-attacks. Its comprehensive backdoor capabilities enable the operator to perform a multitude of tasks, including stealing sensitive information and disrupting system operations. The software's public availability and its wide range of functionalities make it a significant cybersecurity concern. In addition to HDoor, the threat actor also installed other malicious software such as Cobalt Strike, Quasar RAT, Gh0stCringe - a variant of Gh0st RAT, and Winnti, a multi-functional implant capable of granting remote control to an infected machine. These tools further enhance the attacker's ability to exploit and damage targeted systems, demonstrating the sophistication and broad scope of the threat actor's capabilities.
Description last updated: 2023-10-11T02:30:05.308Z
What's your take? (Question 1 of 0)
Help tune the shared Cybergeist dataset, assist your peers, and earn karma. Expand the panel to get started.
Aliases We are not currently tracking any aliases
Miscellaneous Associations
Other elements of context that could aid in the identification of relevance
Backdoor
Analyst Notes & Discussion
Be the first to leave your mark here! Log in to share your views and vote.
Source Document References
Information about the HDoor Malware was read from the documents corpus below. This display is limited to 20 results, create a free account to see more