EvilNum
EvilNum TA4563 APT. shellrundll.tlb COM type library DLL hijacking. vaeeva developer project PDB. Fintech/crypto targeting.
Threat Profile
Type
Backdoor
Programming LanguageC/C++
C2 ProtocolHTTP
First Seen2018
Targets
Avrupa/Fintech
Purpose / Capabilities
- Backdoor/Stealer
No C2 servers have been identified for this family yet.
Research Reports (1)
EvilNum -- shellrundll.tlb COM Type Library DLL Hijack, vaeeva Geliştirici PDB Yolu, gethostbyname Ağ Fonksiyonu | Yüksek
EvilNum 1.58MB. C:\Users\Administrator\Desktop\vaeeva\shellrundll.tlb geliştirici PDB. shellrundll.tlb COM type library DLL hijacking. gethostbyname gethostname ag fonksiyonu.
Read Report →