Names | ECCENTRICBANDWAGON | |
Category | Malware | |
Type | Reconnaissance, Backdoor, Keylogger, Credential stealer, Info stealer | |
Description | (US CERT) This report looks at malware samples known as ECCENTRICBANDWAGON. This family of malware is used as a reconnaissance tool. The samples in this report are used for keylogging and screen capture functionality. The samples are very similar, but differ slightly in the location that they store the key logs and screenshots. Some variants have RC4 encrypted strings within the executable and conduct a simple, ineffective cleanup, whereas others do not. | |
Information | <https://us-cert.cisa.gov/ncas/analysis-reports/ar20-239a> |
Last change to this tool card: 27 August 2020
Download this tool card in JSON format
Changed | Name | Country | Observed | ||
APT groups | |||||
↳ Subgroup: BeagleBoyz | ![]() | 2014-Feb 2016 |
1 group listed (1 APT, 0 other, 0 unknown)
Thailand Computer Emergency Response Team (ThaiCERT) Follow us on![]() ![]() |
Report incidents |
|
![]() |
+66 (0)2-123-1234 | |
![]() |
report@thaicert.or.th | |
![]() |
Download PGP key |