Statements (23)
| Predicate | Object |
|---|---|
| gptkbp:instanceOf |
gptkb:malware
|
| gptkbp:alsoKnownAs |
Worm:Win32/Brambul.A
|
| gptkbp:category |
gptkb:cyber_espionage_tool
|
| gptkbp:detects |
gptkb:Symantec
gptkb:Microsoft_Defender |
| gptkbp:exploits |
weak SMB credentials
|
| gptkbp:fileExtension |
.exe
|
| gptkbp:firstObserved |
2013
|
| gptkbp:notableBattle |
gptkb:Sony_Pictures_hack
|
| gptkbp:platform |
gptkb:Windows
|
| gptkbp:primaryUse |
credential harvesting
network propagation |
| gptkbp:spreadTo |
brute-force attack
SMB protocol exploitation |
| gptkbp:supportsProtocol |
command and control servers
hardcoded email addresses |
| gptkbp:usedBy |
gptkb:Lazarus_Group
|
| gptkbp:usesMalware |
gptkb:Joanap
gptkb:Destover worm |
| gptkbp:bfsParent |
gptkb:Brambul
|
| gptkbp:bfsLayer |
7
|
| https://www.w3.org/2000/01/rdf-schema#label |
Brambul worm
|