Sexy Ukranian Teen Makes Money | Reps Hire a Hacker Pro
Hire a Hacker Review: New Backdoor Created Using Leaked CIA's Hive Malware Discovered in the Wild
Unidentified threat actors have deployed a new backdoor that borrows its features from the U.S. Central Intelligence Agency (CIA)'s Hive multi-platform malware suite, the source code of which was released by WikiLeaks in November 2017.
"This is the first time we caught a variant of the CIA Hive attack kit in the wild, and we named it xdr33 based on its embedded Bot-side certificate CN=xdr33," Qihoo Netlab 360's Alex Turing and Hui Wang said in a technical write-up published last week.
xdr33 is said to be propagated by exploiting an unspecified N-day security vulnerability in F5 appliances. It communicates with a command-and-control (C2) server using SSL with forged Kaspersky certificates.
The intent of the backdoor, per the Chinese cybersecurity firm, is to harvest sensitive information and act as a launchpad for subsequent intrusions. It improves upon Hive by adding new C2 instructions and functionalities, among other implementation changes.
The ELF sample further operates as a Beacon by periodically exfiltrating system metadata to the remote server and executing commands issued by the C2.
This includes the ability to download and upload arbitrary files, run commands using cmd, and launch shell, in addition to updating and erasing traces of itself from the compromised host.
The malware also incorporates a Trigger module that's designed to eavesdrop on network traffic for a specific "trigger" packet in order to extract the C2 server mentioned in the IP packet's payload, establish connection, and wait for the execution of commands sent by the C2.
"It is worth noting that Trigger C2 differs from Beacon C2 in the details of communication; after establishing an SSL tunnel, [the] bot and Trigger C2 use a Diffie-Helllman key exchange to establish a shared key, which is used in the AES algorithm to create a second layer of encryption," the researchers explained.
For business inquiries contact: #TeamTonyCapo
#hireahackerpro #teamtonycapo #tonycapo #hireahacker #hacker #prohacker #hackerforhire #python #ai #hackerinc #programming
-
LIVE
Graham Allen
2 hours agoTrump Trifecta Is OFFICIAL! Is Biden Stepping Down For Kamala? + Senate RINOs Must Be Dealt With!!
8,962 watching -
30:47
Matt Kohrs
1 hour agoLIVE! Rumble's Capital City Studios || The MK Show
4.22K2 -
38:46
BonginoReport
3 hours agoAmerica First is Under Attack (Ep.83) - 11/12/24
27.7K54 -
LIVE
Vigilant News Network
14 hours agoVivek Sends Strong Post-Election Message to Democrats | The Daily Dose
2,428 watching -
LIVE
2 MIKES LIVE
1 hour agoThe Mike Schwartz Show 11-12-2024
138 watching -
1:41:50
Game On!
10 hours ago $4.84 earnedThe Miami Dolphins FINALLY Win a Prime Time Game!
30K -
16:27
This Bahamian Gyal
1 day agoBLACK woman calls MAGA supporter SELLOUT at PISTONS game
30.6K62 -
18:35
Neil McCoy-Ward
21 hours ago🇺🇸 TRUMP 🇺🇸 Just Dropped An Absolute BOMBSHELL… (THINGS ARE ABOUT TO GET CRAZY!)
22.5K45 -
7:49
Misha Petrov
14 hours agoThe SHOCKING Disrespect Toward U.S. Veterans
16.8K44 -
20:17
RTT: Guns & Gear
19 hours ago $5.12 earnedIs This The Best Glock Clone For Under $300 | Bear Creek Arsenal Grizzly BC-102
31.9K12