ShadowPhyre Server (b)
Copyright © MegaSecurity
By Cheitan, Mayhem and Phr33k
Informations
| Author | Cheitan, Mayhem and Phr33k |
| Family | ShadowPhyre |
| Category | Remote Access |
| Version | ShadowPhyre Server (b) |
Additional Information
Server:
dropped file:
C:\WINDOWS\SYSTEM\WinZip.exe
size: 228 KB
port: 55555 TCP
startup:
HKLM\Software\Microsoft\Windows\CurrentVersion\RunIf you recognize any personal information on this page and wish to have it removed or redacted, please contact us at jplesueur@phrozen.io. We are committed to protecting your privacy in accordance with GDPR regulations.