ETDA สำนักงานพัฒนาธุรกรรมทางอิเล็กทรอนิกส์
Electronic Transactions Development Agency
Report
Search
Home > List all groups > List all tools > List all groups using tool Combos

Threat Group Cards: A Threat Actor Encyclopedia

Permanent link Tool: Combos

NamesCombos
CategoryMalware
TypeBackdoor, Info stealer, Credential stealer, Exfiltration
Description(AlienVault) The COMBOS malware family is an HTTP based backdoor. The backdoor is capable of file upload, file download, spawning a interactive reverse shell, and terminating its own process. The backdoor may decrypt stored Internet Explorer credentials from the local system and transmit the credentials to the C2 server. The COMBOS malware family does not have any persistence mechanisms built into itself.
Information<https://otx.alienvault.com/pulse/56aa5a8d67db8c6aafe00db7>
Malpedia<https://malpedia.caad.fkie.fraunhofer.de/details/win.combos>

Last change to this tool card: 23 April 2020

Download this tool card in JSON format

Previous: CollectionRAT
Next: Comet

All groups using tool Combos

ChangedNameCountryObserved

APT groups

 Comment Crew, APT 1China2006-May 2018X

1 group listed (1 APT, 0 other, 0 unknown)

Digital Service Security Center
Electronic Transactions Development Agency

Follow us on

Facebook Twitter

Report incidents

Telephone +66 (0)2-123-1227
E-mail [email protected]