VENOMBITE (7b002b6e-442c-4c0a-b173-873820c7c731)
VENOMBITE is a C/C++ Windows downloader that has evolved from PENDOWN. It uses the same custom encoding routine, but the network functionality has been moved to an embedded executable. The downloaded file is loaded and executed in memory. Availability: Non-public
| Cluster A | Galaxy A | Cluster B | Galaxy B | Level |
|---|---|---|---|---|
| VENOMBITE (7b002b6e-442c-4c0a-b173-873820c7c731) | Tool | APT43 (aac49b4e-74e9-49fa-84f9-e340cf8bafbc) | Threat Actor | 1 |