|
gptkbp:instanceOf
|
cybercrime
|
|
gptkbp:activeYearsStart
|
2013
|
|
gptkbp:alsoKnownAs
|
gptkb:Charming_Kitten
gptkb:Newscaster_Team
Phosphorus
|
|
gptkbp:associatedWith
|
gptkb:Iranian_government
|
|
gptkbp:connectsTo
|
gptkb:Islamic_Revolutionary_Guard_Corps
|
|
gptkbp:countryOfOrigin
|
gptkb:Iran
|
|
gptkbp:designation
|
gptkb:Microsoft
gptkb:US_Department_of_Justice
gptkb:FireEye
|
|
gptkbp:enemyOf
|
malware
phishing
social engineering
credential harvesting
|
|
https://www.w3.org/2000/01/rdf-schema#label
|
APT35
|
|
gptkbp:majorCity
|
gptkb:Australia
gptkb:Canada
gptkb:France
gptkb:Germany
gptkb:Israel
gptkb:Saudi_Arabia
gptkb:Turkey
gptkb:United_Kingdom
gptkb:United_States
UAE
|
|
gptkbp:notableFor
|
2014
2017
2019
2021
|
|
gptkbp:notableOperation
|
gptkb:Operation_Newscaster
gptkb:Operation_SpoofedScholars
|
|
gptkbp:platform
|
gptkb:Android
gptkb:Facebook
gptkb:Gmail
gptkb:LinkedIn
gptkb:Twitter
gptkb:WhatsApp
gptkb:Telegram
gptkb:Yahoo
gptkb:Outlook
|
|
gptkbp:target
|
gptkb:energy
academics
journalists
government organizations
defense sector
telecommunications sector
dissidents
|
|
gptkbp:technique
|
malicious websites
watering hole attacks
spear phishing emails
zero-day vulnerabilities
fake social media profiles
|
|
gptkbp:usesMalware
|
Android malware
macro-enabled documents
PowerShell backdoors
|
|
gptkbp:bfsParent
|
gptkb:Operation_Winnti
gptkb:Hacker
|
|
gptkbp:bfsLayer
|
7
|