WEBC2-QBP

WEBC2-QBPWEBC2-QBP

Description

The WEBC2 malware family is designed to retrieve a Web page from a pre-determined C2 server. It expects the Web page to contain special HTML tags; the backdoor will attempt to interpret the data between the tags as commands. The WEBC2-QBP variant will search for two strings in a HTML comment. The first will be "2010QBP " followed by " 2010QBP//--". Inside these tags will be a DES-encrypted string.

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Software
WEBC2-DIV
Software
WEBC2-YAHOO
Software
WEBC2-UGX
Software
WEBC2-TABLE
Software
WEBC2-TOCK
Software
WEBC2-CSON
Sourced from MITRE ATT&CK Enterprise . Curated by Adam Lundqvist, SQUR.