SYMBOLCOMMON_NAMEaka. SYNONYMS
win.binanen (Back to overview)

Binanen


Binanen is a dropper that drops and executes a section of itself into a hidden dummy process. According to F-Secure, it executes command line tools such as (for example) asipconfig, which is useful to retrieve the network configuration. The malware aims to steal information about the machine, the username, installed software and, more generally speaking, it potentially can carry out actions on the compromised machine.

References
2020-01-01SecureworksSecureWorks
BRONZE FLEETWOOD
Binanen Ghost RAT OrcaRAT APT5
2012-08-30SophosSophos
Troj/Binanen-B
Binanen

There is no Yara-Signature yet.