Sexy Ukranian Teen Makes Money | Reps Hire a Hacker Pro
Hire a Hacker Review: New Backdoor Created Using Leaked CIA's Hive Malware Discovered in the Wild
Unidentified threat actors have deployed a new backdoor that borrows its features from the U.S. Central Intelligence Agency (CIA)'s Hive multi-platform malware suite, the source code of which was released by WikiLeaks in November 2017.
"This is the first time we caught a variant of the CIA Hive attack kit in the wild, and we named it xdr33 based on its embedded Bot-side certificate CN=xdr33," Qihoo Netlab 360's Alex Turing and Hui Wang said in a technical write-up published last week.
xdr33 is said to be propagated by exploiting an unspecified N-day security vulnerability in F5 appliances. It communicates with a command-and-control (C2) server using SSL with forged Kaspersky certificates.
The intent of the backdoor, per the Chinese cybersecurity firm, is to harvest sensitive information and act as a launchpad for subsequent intrusions. It improves upon Hive by adding new C2 instructions and functionalities, among other implementation changes.
The ELF sample further operates as a Beacon by periodically exfiltrating system metadata to the remote server and executing commands issued by the C2.
This includes the ability to download and upload arbitrary files, run commands using cmd, and launch shell, in addition to updating and erasing traces of itself from the compromised host.
The malware also incorporates a Trigger module that's designed to eavesdrop on network traffic for a specific "trigger" packet in order to extract the C2 server mentioned in the IP packet's payload, establish connection, and wait for the execution of commands sent by the C2.
"It is worth noting that Trigger C2 differs from Beacon C2 in the details of communication; after establishing an SSL tunnel, [the] bot and Trigger C2 use a Diffie-Helllman key exchange to establish a shared key, which is used in the AES algorithm to create a second layer of encryption," the researchers explained.
For business inquiries contact: #TeamTonyCapo
#hireahackerpro #teamtonycapo #tonycapo #hireahacker #hacker #prohacker #hackerforhire #python #ai #hackerinc #programming
-
6:19
Rethinking the Dollar
14 hours agoSwiss Chancellery Pushes for Bitcoin: A Revolution in National Finance?
5671 -
LIVE
themidwesterner
11 minutes agoMecosta Co, MI reverses support for CCP Gotion battery plant
31 watching -
3:10:39
GoodLawgic
12 hours agoThe Following Program: GREAT Lawgic Joins To Discuss Domestic Terrorism in 2025
131K78 -
1:05:48
Mikhaila Peterson
6 days agoDoctor On The Carnivore Diet and Fertility | Robert Kiltz EP 218
89.4K35 -
2:46:06
DDayCobra
14 hours ago $21.17 earnedCobraCast 199
89.4K19 -
2:07:27
TheSaltyCracker
14 hours agoTrump Tower Bombed w/ Cybertruck ReeEEeE Stream 01-01-25
200K433 -
8:15:58
FreshandFit
21 hours agoElon Musk BETRAYAL & Mass Censorship On X
247K104 -
2:25:43
Darkhorse Podcast
21 hours agoLooking Back and Looking Forward: The 258 Evolutionary Lens with Bret Weinstein and Heather Heying
235K221 -
5:50:16
Pepkilla
20 hours agoRanked Warzone ~ Are we getting to platinum today or waaa
151K7 -
9:15:09
BrancoFXDC
18 hours ago $9.88 earnedHAPPY NEW YEARS - Road to Platinum - Ranked Warzone
123K4