win.hancitor (Back to overview)

Hancitor

aka: Chanitor
URLhaus    

There is no description at this point.

References
https://www.proofpoint.com/us/threat-insight/post/hancitor-ruckguv-reappear
https://researchcenter.paloaltonetworks.com/2016/08/unit42-vb-dropper-and-shellcode-for-hancitor-reveal-new-techniques-behind-uptick/
http://www.morphick.com/resources/lab-blog/closer-look-hancitor
https://blog.minerva-labs.com/new-hancitor-pimp-my-downloader
https://researchcenter.paloaltonetworks.com/2018/02/unit42-dissecting-hancitors-latest-2018-packer/
https://www.fireeye.com/blog/threat-research/2016/09/hancitor_aka_chanit.html
https://researchcenter.paloaltonetworks.com/2018/02/unit42-compromised-servers-fraud-accounts-recent-hancitor-attacks/
https://www.vkremez.com/2018/11/lets-learn-in-depth-reversing-of.html
https://0ffset.net/reverse-engineering/malware-analysis/reversing-hancitor-again/
https://www.zscaler.com/blogs/research/chanitor-downloader-actively-installing-vawtrak
https://boozallenmts.com/resources/news/closer-look-hancitor
https://researchcenter.paloaltonetworks.com/2016/08/unit42-pythons-and-unicorns-and-hancitoroh-my-decoding-binaries-through-emulation/