DeimosC2: What SOC Analysts and Incident Responders Need to Know About This C&C Framework DeimosC2 indicators Detection name ---------------------------------------------------------------- 439b072b6da250440d70d0e959959973af6077c46bf6ffedd0b38343291eb40e Trojan.Win32.DEIMOS.SMDC2B 2a4b225f544e1a0497f69c124e3c7f4959fe09b5f85f8fe5982613119e7a4149 Trojan.Win64.DEIMOS.SMDC2F b1e080a098a6fb4e1ae249fe6357e1aec3fb0d8f412ad8f0c674b6dbd36a9227 Trojan.Win64.DEIMOS.SMDC2E 7bec7b246c7ba157f16dde3cee2225c1066bac706aa3113031df351a75c22239 Trojan.Win64.DEIMOS.SMDC2C 986daeb291996c58eaa6b40da906579ed7d0da397493f921e56e3de00af94315 Trojan.Win64.DEIMOS.SMDC2C 652c2b4bda587d348dea0b445e58f2cb296dc37cdf96e64593ec76d3f6303a82 Trojan.Win64.DEIMOS.SMDC2E da76dc5c608f5f75a8bbb86e13eee6bb575a2305ca53036e8cebe0e3755a3982 Trojan.Linux.DEIMOS.B 05e9fe8e9e693cb073ba82096c291145c953ca3a3f8b3974f9c66d15c1a3a11d Trojan.Linux.DEIMOS.USELVIE22 1cee5ecef72cb5db372b80a11019b1373807e6a5e6245f567048fdc5de703eeb Trojan.Win32.DEIMOS.SMDC2A dbc5b2946b58deb1c40d787e3c5386b9020086b5d01dbbfbaccc44b322aca68c Trojan.Win64.DEIMOS.A 8c6ab7a051eedf9f119778bdc71cd96a40f52101657881e84262237083ba4a51 Trojan.Win32.DEIMOS.SMDC2A 9513d42ee449294c27dc1f6e60d667c47d39677cfa8ed8e719f0b5e78811bb8f Trojan.Win32.DEIMOS.SMDC2A 980b4076a9571ef2c1ef0328ce63074f22adeb29ef1001f328783ca5783979cc Trojan.Win32.DEIMOS.SMDC2A 4f069ec1dc6e88a2b4e1c50a8dda6a7935f91424724499b41ff1c3a9f87b143c Trojan.Win64.DEIMOS.SMDC2C 82aa04f8576ea573a4772db09ee245cab8eac7ff1e7200f0cc960d8b6f516e92 Backdoor.Linux.DEIMOS.USELVB822 29305f74260d56f94a80d514505dbef949b0e6fae7989a9cd84e956ec4f6cffe Trojan.Win32.DEIMOS.SMDC2A b6bc7b208a2b7d1f1ce15352a442e8ee8c886416c4f2dbe22c0338a0f8b8d0a7 Trojan.Win64.DEIMOS.SMDC2C 9abf641af18d2015fab8d2a862a6bffddd5e8a9d9318010db2e81d536888cb43 Trojan.Win64.DEIMOS.SMDC2E d2bf58d4ad52195a29658f6fab9d85b2f5d8ce4392acf89cb243e0b91511c7c3 Trojan.Win64.DEIMOS.SMDC2D 0418952a347d2d4b40055f197622fb0fd87ac782477cfd354ee030cbe8c56844 Trojan.Win32.DEIMOS.SMDC2A fc98fd6e4cdc7170b77b5d68703d00015e92761bdb978624ad6293133c7604e1 Trojan.MacOS.DEIMOS.MANP 6f3394a5980ddbc28c7e889c636cddabd48a710588a5c10427d10a19d07b1c0a Trojan.Win64.DEIMOS.SMDC2D f1b925e6e11ef4200b7a8970ab5d54b89df25c874e92f08a93724498451eecaf Trojan.Win64.DEIMOS.SMDC2D 036947a130d99d024912ad8d6632ba6a32d5eb3649e2d605a0a6de5c6f35a63a Trojan.Win32.FRS.VSNW1CJ22 046bc639e73a8f33fc580d20392b28fe261d08453b23d20f45d5ced7ae6b37d9 Trojan.Linux.DEIMOS.USELVI822 23ec389d12c912ee895ec039891769d4be39a575caeca90615be7d4143b653c4 Trojan.Linux.DEIMOS.A 21827cb6d8409ddea5097384d86f3004f5ec4ebe387a9340d8f3443598bdd2af Trojan.Win64.DEIMOS.SMDC2D 1c60f6b5f2bc443895b5d295fcca8e7327e65d03d5d5046f33c04619da3f5791 Trojan.Win64.DEIMOS.SMDC2D 325f216d2297ca37dcbd050e3a9c34229e47f5dce30f7f6442d4b20ff7940f5b Trojan.Win64.DEIMOS.SMDC2D 19402300ab8748b1ad565bed3e9b6713d2cebd6311729be41b2c7b1964929751 Trojan.Win64.DEIMOS.SMDC2C 1ff0484c33bfad219d791fa68d609b98d66a178e6c85c18c800c229793da9332 Trojan.Linux.DEIMOS.A a325c7729d39e5530b2c0804cd28b4dfb1d7560736ae5cbc7631fa5949cf7940 Trojan.Win32.DEIMOS.SMDC2A 73a190b1b44b5fb8f9e92121d006978f30a20ac109e6b0f760e7930a48a1742a Trojan.Win64.DEIMOS.SMDC2E 2e1d671659c49e996b1d5f0ba19acee1dd91cb627ad1f311e2f15a919d943deb Trojan.Win32.DEIMOS.A