LetMeowIn – Analysis of a Credential Dumper – ITTS

LetMeowIn – Analysis of a Credential Dumper

21 May 2024

LetMeowIn implements this technique within a function named HijackHandle which goes through the following high-level steps to hijack a process’ existing handle to the LSASS process: Leverages NtQuerySystemInformation with SystemHandleInformation to get a list of all open handles and their associated PIDs.

Source: Binary Defense

Date:

21 May 2024

Categorie(s):

Tag(s):

Analysis, Blogs, Credential, IT, Threat Research

Hackers Deploy CRON#TRAP for Persistent Linux System Backdoors5 November 2024
New Android Banking Malware ‘ToxicPanda’ Targets Users with Fraudulent Money Transfers5 November 2024
Seven ways to develop and deploy AI responsibly5 November 2024
Google Smart Lock / Extend Unlock: The complete guide5 November 2024
Replication provides sustainable security to Florida-based firm during hurricane season5 November 2024