SILENTUPLOADER (Malware Family)
By Fraunhofer FKIE
Archived: 2026-04-05 16:39:54 UTC
win.silentuploader (Back to overview)
SILENTUPLOADER
According to Mandiant, SILENTUPLOADER is an uploader written in MSIL that is dropped by DOSTEALER
and is designed to work specifically in tandem with it. It checks for files in a specified folder every 30 seconds
and uploads them to a remote server.
References
2022-12-12 ⋅ SOCRadar ⋅ SOCRadar
Dark Web Profile: APT42 – Iranian Cyber Espionage Group
PINEFLOWER VINETHORN VBREVSHELL BROKEYOLK CHAIRSMACK DOSTEALER GHAMBAR
SILENTUPLOADER TAG-56
2022-09-07 ⋅ Mandiant ⋅ Mandiant Intelligence
APT42: Crooked Charms, Cons and Compromises
PINEFLOWER VINETHORN VBREVSHELL BROKEYOLK DOSTEALER GHAMBAR
SILENTUPLOADER
There is no Yara-Signature yet.
Source: https://malpedia.caad.fkie.fraunhofer.de/details/win.silentuploader
https://malpedia.caad.fkie.fraunhofer.de/details/win.silentuploader
Page 1 of 1