{
  "website": "termbin.com",
  "tags": [
    "C&C",
    "Exfiltration",
    "Download"
  ],
  "service_provider": "Termbin",
  "phishing": "None",
  "command_and_control": "termbin.com can be used for C&C purposes. The attacker will place commands on a pastie and have the malware fetch the commands.",
  "exfiltration": "Attackers will paste sensitive data onto termbin.com and share the link with themselves for later access.",
  "download": "Attackers upload the source code of tools onto termbin.com and download them when necessary.",
  "sample_url": "https://blogs.vmware.com/emea-en/2022/05/serpent-the-backdoor-that-hides-in-plain-sight/",
  "created": "2022-07-28",
  "last_update": "2022-07-28",
  "credits": "Jerry Shockley - @jsh0x",
  "detail_path": "/site/7465726d62696e2e636f6d",
  "detail_slug": "7465726d62696e2e636f6d",
  "detail_url": "https://lots-project.com/site/7465726d62696e2e636f6d",
  "scraped_at": "2026-06-16T11:58:36Z"
}