Names | GravityAdmin | |
Category | Malware | |
Type | Control panel | |
Description | (Talos) A tool to administer infected systems (panel binary), used by operators since at least 2021, by connecting to GravityRAT’s and HeavyLift’s C2 servers. GravityAdmin consists of multiple inbuilt User Interfaces (UIs) that correspond to specific, codenamed, campaigns being operated by malicious operators. | |
Information | <https://blog.talosintelligence.com/cosmic-leopard/> |
Last change to this tool card: 19 June 2024
Download this tool card in JSON format
Previous: Grateful POS
Next: GravityRAT
Changed | Name | Country | Observed | ||
APT groups | |||||
Cosmic Leopard, Operation Celestial Force | 2018 |
1 group listed (1 APT, 0 other, 0 unknown)
Digital Service Security Center Follow us on |
Report incidents |
|
+66 (0)2-123-1227 | ||
[email protected] |