BUBBLEWRAP
MITRE
Malware Type:
Other
Other
First seen:
Unknown
Unknown
Last seen:
Unknown
Unknown
Details:
[BUBBLEWRAP](https://attack.mitre.org/software/S0043) is a full-featured, second-stage backdoor used by the [admin@338](https://attack.mitre.org/groups/G0018) group. It is set to run when the system boots and includes functionality to check, upload, and register plug-ins that can further enhance its capabilities. (Citation: FireEye admin@338)
Aliases (105)
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Backdoor.APT.FakeWinHTTPHelper
Used by Actors (1)
Metadata
| ID: | 59 |
| Created: | 13/01/2026 17:48 |
| Updated: | 06/03/2026 16:00 |