Heyoka Backdoor

Malware Profile Updated 3 months ago

Download STIX

Preview STIX

Heyoka backdoor is a type of malware that can infiltrate computer systems without user knowledge and cause damage by stealing personal information or disrupting operations. It is much more powerful than other similar malware such as Mongall, and its modified version presents an even greater threat. In a recent operation, security researchers discovered a payload that included both the Mongall and modified Heyoka backdoors. The modified Heyoka backdoor was found to be a complete backdoor product, meaning it had the ability to fully take control of compromised systems. The malware was distributed through various droppers, including DLL_test loaders for Mongall and modified Heyoka backdoors. This sophisticated distribution method highlights the dangerous capabilities of Heyoka and the need for robust cybersecurity measures to prevent its spread.

What's your take? (Question 1 of 5)

Help tune the shared Cybergeist dataset, assist your peers, and earn karma. Expand the panel to get started.

Possible Aliases / Cluster overlaps

It's hard to track cluster overlaps and naming conventions between vendors, so here are some possible overlapping names / profiles you also may want to look at.

ID	Votes	Profile Description

Miscellaneous Associations

Other elements of context that could aid in the identification of relevance

Malware Loader

Backdoor

Dropper

Loader

Malware

Payload

Associated Malware

To see the evidence that has resulted in this association, create a free account

ID	Type	Votes	Profile Description
Mongall	Unspecified	1	Mongall is a malicious software (malware) known for its ability to exploit and damage computer systems. It infiltrates the system through suspicious downloads, emails, or websites, often unbeknownst to the user. Once inside, Mongall can steal personal information, disrupt operations, or even hold da

Associated Threat Actors

To see the evidence that has resulted in this association, create a free account

ID	Type	Votes	Profile Description
No associations to display

Associated Vulnerabilities

To see the evidence that has resulted in this association, create a free account

ID	Type	Votes	Profile Description
No associations to display

Source Document References

Information about the Heyoka Backdoor Malware was read from the documents corpus below. This display is limited to 20 results, create a free account to see more

Source	CreatedAt	Title
MITRE	a year ago	Aoqin Dragon \| Newly-Discovered Chinese-linked APT Has Been Quietly Spying On Organizations For 10 Years