Sexy Ukranian Teen Makes Money | Reps Hire a Hacker Pro
Hire a Hacker Review: New Backdoor Created Using Leaked CIA's Hive Malware Discovered in the Wild
Unidentified threat actors have deployed a new backdoor that borrows its features from the U.S. Central Intelligence Agency (CIA)'s Hive multi-platform malware suite, the source code of which was released by WikiLeaks in November 2017.
"This is the first time we caught a variant of the CIA Hive attack kit in the wild, and we named it xdr33 based on its embedded Bot-side certificate CN=xdr33," Qihoo Netlab 360's Alex Turing and Hui Wang said in a technical write-up published last week.
xdr33 is said to be propagated by exploiting an unspecified N-day security vulnerability in F5 appliances. It communicates with a command-and-control (C2) server using SSL with forged Kaspersky certificates.
The intent of the backdoor, per the Chinese cybersecurity firm, is to harvest sensitive information and act as a launchpad for subsequent intrusions. It improves upon Hive by adding new C2 instructions and functionalities, among other implementation changes.
The ELF sample further operates as a Beacon by periodically exfiltrating system metadata to the remote server and executing commands issued by the C2.
This includes the ability to download and upload arbitrary files, run commands using cmd, and launch shell, in addition to updating and erasing traces of itself from the compromised host.
The malware also incorporates a Trigger module that's designed to eavesdrop on network traffic for a specific "trigger" packet in order to extract the C2 server mentioned in the IP packet's payload, establish connection, and wait for the execution of commands sent by the C2.
"It is worth noting that Trigger C2 differs from Beacon C2 in the details of communication; after establishing an SSL tunnel, [the] bot and Trigger C2 use a Diffie-Helllman key exchange to establish a shared key, which is used in the AES algorithm to create a second layer of encryption," the researchers explained.
For business inquiries contact: #TeamTonyCapo
#hireahackerpro #teamtonycapo #tonycapo #hireahacker #hacker #prohacker #hackerforhire #python #ai #hackerinc #programming
-
5:00
Adam Does Movies
14 hours agoCompanion Movie Review - Objectifying Sexbots Ends Today!
1.88K -
14:23
GBGunsRumble
1 day agoGBGuns Armory Ep 136 Genesis Arms Gen-12 SSBM
1.57K2 -
1:11:26
PMG
1 day ago $0.34 earnedTRANTIFA BORDER PATROL ASSASSINS!
2.42K1 -
2:15:15
vivafrei
21 hours agoEp. 249: Confirmation Hearings RECAP! Canada-U.S. TRADE WAR? Bureaucrats Sue Trump! Viva Barnes Live
174K428 -
4:51:59
MyronGainesX
14 hours agoIRS Auctions Off Tekashi 69's Possessions
188K28 -
LIVE
Vigilant News Network
1 day agoRFK Jr. Hearing EXPOSES Corrupt Politicians in Humiliating Scandal | Media Blackout
3,027 watching -
1:11:40
Josh Pate's College Football Show
13 hours ago $6.17 earnedPerfect CFB Conferences | Big Ohio State Changes | Canceling Spring Games | SEC 2025 Thoughts
69.3K2 -
1:08:07
Bek Lover Podcast
11 hours agoInteresting Times with Bek Lover Podcast
37.8K -
1:51:12
Tate Speech by Andrew Tate
14 hours agoEMERGENCY MEETING EPISODE 105 - UNBURDENED
216K109 -
1:01:18
Tactical Advisor
17 hours agoBuilding a 308 AR10 Live! | Vault Room Live Stream 016
196K20