Home Malware Programs Backdoors TINYTYPHON

TINYTYPHON

Posted: May 13, 2020

TINYTYPHON is a miniature backdoor Trojan that the Patchwork APT hackers employ in their attacks against systems that contain valuable information regularly. The features of this threat are very limited, and it serves one primary purpose – collecting important files from the compromised system and then delivering a secondary payload. TINYTYPHON operates by scanning all disk partitions for files that use particular file extensions that the attackers are interested in – documents, archives, databases, spreadsheets, etc. If a file uses an extension that the malware is interested in, it will copy its contents and transfer them to the attacker's server.

While TINYTYPHON is not an advanced piece of malware, certainly, it seems to have been created with one sole purpose, and it serves this purpose perfectly. Thankfully, the project is not capable of detecting and evading automatic malware detection and analyze systems, so you can rest assured that up-to-date anti-malware applications are able to identify and stop this threat.

Loading...