CloudDuke malware

GPTKB entity

Statements (28)
Predicate Object
gptkbp:instanceOf malware
gptkbp:abilities data exfiltration
modular architecture
command and control communication
gptkbp:alsoKnownAs gptkb:MiniDionis
MiniDuke 2.0
gptkbp:deliveredBy phishing emails
malicious attachments
gptkbp:developedBy gptkb:APT29
gptkbp:discoveredBy gptkb:Kaspersky_Lab
gptkb:F-Secure
gptkbp:firstReported 2015
https://www.w3.org/2000/01/rdf-schema#label CloudDuke malware
gptkbp:notableFeature encrypted payloads
stealthy communication channels
uses cloud services for C2
gptkbp:platform gptkb:Windows
gptkbp:relatedTo CosmicDuke malware
MiniDuke malware
gptkbp:usedBy gptkb:Cozy_Bear
gptkbp:usedFor cybercrime
gptkbp:usedIn attacks against energy sector
attacks against research institutes
targeted attacks against government organizations
gptkbp:usesMalware backdoor
espionage malware
gptkbp:bfsParent gptkb:CloudDuke
gptkbp:bfsLayer 7