Skip to content

<<< Hide Navigation Hide TOC >>>

WEBC2-CSON (950a8038-eeec-44a0-b3db-a557e5796416)

A WEBC2 backdoor is designed to retrieve a Web page from a pre-determined C2 server. It expects the Web page to contain special HTML tags; the backdoor will attempt to interpret the data between the tags as commands. Members of this family of malware act only as downloaders and droppers for other malware. They communicate with a hard-coded C2 server, reading commands embedded in HTML comment fields. Some variants are executables which act upon execution, others are DLLs which can be attached to services or loaded through search order hijacking.

Galaxy ColorsToolMalpedia
Rows: 1
Loading extensions...
Collapse filters
Use the filters above each column to filter and limit table data. Advanced searches can be performed by using the following operators:
<, <=, >, >=, =, *, !, {, }, ||,&&, [empty], [nonempty], rgx:
Learn more

TableFilter v0.7.2

https://www.tablefilter.com/
©2015-2025 Max Guglielmi
?
Cluster A Galaxy A Cluster B Galaxy B Level
WEBC2-CSON (950a8038-eeec-44a0-b3db-a557e5796416) Tool WebC2-Cson (5371bc44-dc07-4992-a3d7-c21705c50ac4) Malpedia 1