WEBC2-AUSOV (e2a27431-28ea-42e3-a0cc-72f29828c292)
A WEBC2 backdoor is designed to retrieve a Web page from a pre-determined C2 server. It expects the Web page to contain special HTML tags; the backdoor will attempt to interpret the data between the tags as commands. This malware family is a only a downloader which operates over the HTTP protocol with a hard-coded URL. If directed, it has the capability to download, decompress, and execute compressed binaries.
| Cluster A | Galaxy A | Cluster B | Galaxy B | Level |
|---|---|---|---|---|
| WebC2-Ausov (64f5ae85-1324-43de-ba3a-063785567be0) | Malpedia | WEBC2-AUSOV (e2a27431-28ea-42e3-a0cc-72f29828c292) | Tool | 1 |