 |
สำนักงานพัฒนาธุรกรรมทางอิเล็กทรอนิกส์ Electronic Transactions Development Agency |
|
สำนักงานพัฒนาธุรกรรมทางอิเล็กทรอนิกส์ Electronic Transactions Development Agency |
Tool: agfSpy| Names | agfSpy | |
| Category | Malware | |
| Type | Backdoor | |
| Description | The agfSpy backdoor retrieves configuration and commands from its C&C server. These commands allow the backdoor to execute shell commands and send the execution results back to the server. It also enumerates directories and can list, upload, download, and execute files, among other functions. The capabilities of agfSpy are very similar to dneSpy, except each backdoor uses a different C&C server and various formats in message exchanges. | |
| Information | <https://documents.trendmicro.com/assets/white_papers/wp-operation-earth-kitsune.pdf> | |
| Malpedia | <https://malpedia.caad.fkie.fraunhofer.de/details/win.agfspy> | |
Last change to this tool card: 29 December 2022
Download this tool card in JSON format
Previous: Agent Tesla
Next: Aggah
| Changed | Name | Country | Observed | ||
APT groups | |||||
| Operation Earth Kitsune |  | 2019-Late 2022 | |||
1 group listed (1 APT, 0 other, 0 unknown)
|
Digital Service Security Center Follow us on
|
Report incidents |
|
 |
+66 (0)2-123-1227 | |
 |
[email protected] | |