TrueBot

TrueBot (Grace) Silence Group/TA505. AD Domain Controller target. Clop+FlawedGrace dropper. Financial institution APT.

Threat Profile
Type Loader
Programming LanguageC++
C2 ProtocolHTTP
First Seen2017
Targets Kuresel Finans/Kurumsal
Purpose / Capabilities
  • Botnet+Loader
No C2 servers have been identified for this family yet.

Research Reports (1)

High

TrueBot -- 413KB, NtQuerySystemInformation Anti-Sandbox, DC2_USERS Domain Controller Ref | Yüksek

TrueBot 413KB. NtQuerySystemInformation anti-sandbox. DC2_USERS domain controller C2 config. Silence Group.

Read Report →