 |
สำนักงานพัฒนาธุรกรรมทางอิเล็กทรอนิกส์ Electronic Transactions Development Agency |
|
สำนักงานพัฒนาธุรกรรมทางอิเล็กทรอนิกส์ Electronic Transactions Development Agency |
Tool: SysUpdate| Names | SysUpdate FOCUSFJORD HyperSSL Soldier | |
| Category | Malware | |
| Type | Backdoor, Loader, Downloader | |
| Description | (SecureWorks) SysUpdate is a multi-stage malware used exclusively by BRONZE UNION. It has been delivered by multiple methods. | |
| Information | <https://www.secureworks.com/research/a-peek-into-bronze-unions-toolbox> <https://research.nccgroup.com/2018/05/18/emissary-panda-a-potential-new-malicious-tool/> <https://www.trendmicro.com/en_us/research/21/d/iron-tiger-apt-updates-toolkit-with-evolved-sysupdate-malware-va.html> <https://www.fireeye.com/blog/threat-research/2021/08/unc215-chinese-espionage-campaign-in-israel.html> | |
| MITRE ATT&CK | <https://attack.mitre.org/software/S0663/> | |
| Malpedia | <https://malpedia.caad.fkie.fraunhofer.de/details/win.hyperssl> | |
Last change to this tool card: 30 December 2022
Download this tool card in JSON format
Previous: Sysmain
Next: TABBYCAT
| Changed | Name | Country | Observed | ||
APT groups | |||||
| Emissary Panda, APT 27, LuckyMouse, Bronze Union |  | 2010-Aug 2023 | |||
| UNC215 | | 2019 | |||
2 groups listed (2 APT, 0 other, 0 unknown)
|
Digital Service Security Center Follow us on
|
Report incidents |
|
 |
+66 (0)2-123-1227 | |
 |
[email protected] | |