TrueBot
TrueBot (Grace) Silence Group/TA505. AD Domain Controller target. Clop+FlawedGrace dropper. Financial institution APT.
Threat Profile
Type
Loader
Programming LanguageC++
C2 ProtocolHTTP
First Seen2017
Targets
Kuresel Finans/Kurumsal
Purpose / Capabilities
- Botnet+Loader
No C2 servers have been identified for this family yet.
Research Reports (1)
TrueBot -- 413KB, NtQuerySystemInformation Anti-Sandbox, DC2_USERS Domain Controller Ref | Yüksek
TrueBot 413KB. NtQuerySystemInformation anti-sandbox. DC2_USERS domain controller C2 config. Silence Group.
Read Report →