MISP
/
misp-galaxy
mirror of https://github.com/MISP/misp-galaxy
2
0
Fork 0
Code Issues Releases Wiki Activity

Merge pull request #374 from rmkml/master 

Add Parasite HTTP RAT
pull/376/head
Alexandre Dulaunoy 2019-04-10 09:55:21 +02:00 committed by GitHub
parent f023795cd7 6467fe5849
commit 6497d0af14
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 11 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
clusters/rat.json
View File

@ -3328,7 +3328,17 @@
},
"uuid": "1b6a067b-50b9-4aa7-a49b-823e94e210fe",
"value": "H-worm"
},
{
"description": "The RAT, dubbed Parasite HTTP, is especially notable for the extensive array of techniques it incorporates for sandbox detection, anti-debugging, anti-emulation, and other protections. The malware is also modular in nature, allowing actors to add new capabilities as they become available or download additional modules post infection.",
"meta": {
"refs": [
"https://www.proofpoint.com/us/threat-insight/post/parasite-http-rat-cooks-stew-stealthy-tricks"
]
},
"uuid": "1b6a067c-50ba-4aa7-a59b-824e94e210fe",
"value": "Parasite-HTTP-RAT"
}
],
"version": 26
"version": 27
}