Tag: fscan

2 Attack Reports | 0 Vulnerabilities

Attack reports

Tropic Trooper spies on government entities in the Middle East

Tropic Trooper, a Chinese-speaking APT group active since 2011, has expanded its operations to target government entities in the Middle East. The group deployed a new variant of the China Chopper web shell on a compromised Umbraco CMS server, along with other post-exploitation tools and backdoor im…
fscan
china chopper
2024-09-05
web shell
swor
bypassgodzilla
crowdoor
umbraco cms
neo-regeorg
Published: September 5, 2024
Downloadable IOCs: 7

Analysis of CoinMiner Attacks Targeting Web Servers

The report details two separate attack cases targeting a Korean medical institution's web server, resulting in the installation of CoinMiners. The targeted server was a Windows IIS server, likely with PACS software installed. In both attacks, web shells were uploaded, and system information was col…
xmrig
coinminer
privilege escalation
earthworm
badpotato
godpotato
2024-06-24
webshell
netcat
cpolar
fscan
printnotifypotato
Published: June 24, 2024
Linked vulnerabilities : CVE-2021-1732
Downloadable IOCs: 59
Click here to see more Attack Reports