EvilNum

EvilNum TA4563 APT. shellrundll.tlb COM type library DLL hijacking. vaeeva developer project PDB. Fintech/crypto targeting.

Threat Profile
Type Backdoor
Programming LanguageC/C++
C2 ProtocolHTTP
First Seen2018
Targets Avrupa/Fintech
Purpose / Capabilities
  • Backdoor/Stealer
No C2 servers have been identified for this family yet.

Research Reports (1)

High

EvilNum -- shellrundll.tlb COM Type Library DLL Hijack, vaeeva Geliştirici PDB Yolu, gethostbyname Ağ Fonksiyonu | Yüksek

EvilNum 1.58MB. C:\Users\Administrator\Desktop\vaeeva\shellrundll.tlb geliştirici PDB. shellrundll.tlb COM type library DLL hijacking. gethostbyname gethostname ag fonksiyonu.

Read Report →