Threat Group Cards: A Threat Actor Encyclopedia
Archived: 2026-04-05 15:09:31 UTC
Home > List all groups > List all tools > List all groups using tool ByPassGodzilla
 Tool: ByPassGodzilla
Names ByPassGodzilla
Category Malware
Type Backdoor
Description
(Kaspersky) A Chinese web shell encryptor used to obfuscate other deployed web shells to
bypass detections. We were able to source different implementations of encrypted web shells
in .NET and ASPX scripts from the same server. According to our telemetry, the newly
discovered web shell was also associated with a campaign leveraging CVE-2023-26360 early
this year targeting vulnerable servers in the Middle East.
Information Last change to this tool card: 23 October 2024
Download this tool card in JSON format
All groups using tool ByPassGodzilla
Changed Name Country Observed
APT groups
 Tropic Trooper, Pirate Panda, APT 23, KeyBoy 2011-Jun 2023
1 group listed (1 APT, 0 other, 0 unknown)
Source: https://apt.etda.or.th/cgi-bin/listgroups.cgi?u=77cc7833-6d0f-4a43-b89c-c25012dd89fa
https://apt.etda.or.th/cgi-bin/listgroups.cgi?u=77cc7833-6d0f-4a43-b89c-c25012dd89fa
Page 1 of 1