 |
สำนักงานพัฒนาธุรกรรมทางอิเล็กทรอนิกส์ Electronic Transactions Development Agency |
|
สำนักงานพัฒนาธุรกรรมทางอิเล็กทรอนิกส์ Electronic Transactions Development Agency |
Tool: Milum| Names | Milum | |
| Category | Malware | |
| Type | Backdoor | |
| Description | (Kaspersky) The malware uses the JSON format for configuration data and as a C2 communication protocol over HTTP as well. Inside the encrypted communications within the HTTP POST requests, we found several interesting fields. One of them shows the malware version – 1.0.1. A version number like this indicates an early stage of development. Other fields suggest the existence of, at the very least, plans for non-C++ versions. | |
| Information | <https://securelist.com/wildpressure-targets-industrial-in-the-middle-east/96360/> | |
| Malpedia | <https://malpedia.caad.fkie.fraunhofer.de/details/win.milum> | |
Last change to this tool card: 24 April 2021
Download this tool card in JSON format
Previous: Milkmaid
Next: Mimikatz
| Changed | Name | Country | Observed | ||
APT groups | |||||
| WildPressure | [Unknown] | 2019-Spring 2021 | |||
1 group listed (1 APT, 0 other, 0 unknown)
|
Digital Service Security Center Follow us on
|
Report incidents |
|
 |
+66 (0)2-123-1227 | |
 |
[email protected] | |