BS2005

BS2005 is malware that was used by Ke3chang in spearphishing campaigns since at least 2011. [1]

ID: S0014
Type: MALWARE
Platforms: Windows
Version: 1.1
Created: 31 May 2017
Last Modified: 30 March 2020

Techniques Used

Domain ID Name Use
Enterprise T1132 .001 Data Encoding: Standard Encoding

BS2005 uses Base64 encoding for communication in the message body of an HTTP request.[1]

References