Statements (25)
| Predicate | Object |
|---|---|
| gptkbp:instanceOf |
malware
|
| gptkbp:abilities |
brute-forces SMB credentials
exfiltrates data via email harvests system information spreads via network shares |
| gptkbp:alsoKnownAs |
gptkb:Brambul_worm
gptkb:Worm:Win32/Brambul |
| gptkbp:associatedWith |
gptkb:Lazarus_Group
|
| gptkbp:detects |
gptkb:Kaspersky
gptkb:Symantec gptkb:Microsoft_Defender |
| gptkbp:exfiltratesTo |
hardcoded email addresses
|
| gptkbp:fileExtension |
.exe
|
| gptkbp:firstObserved |
2013
|
| https://www.w3.org/2000/01/rdf-schema#label |
Brambul
|
| gptkbp:platform |
gptkb:Windows
|
| gptkbp:relatedTo |
gptkb:Destover
|
| gptkbp:spreadTo |
SMB brute-force
|
| gptkbp:supportsProtocol |
gptkb:SMB
SMTP |
| gptkbp:target |
Windows systems
|
| gptkbp:usedIn |
gptkb:Operation_Blockbuster
|
| gptkbp:usesMalware |
worm
|
| gptkbp:bfsParent |
gptkb:Lazarus_Group
|
| gptkbp:bfsLayer |
6
|