CosmicDuke

GPTKB entity

Statements (31)
Predicate Object
gptkbp:instanceOf malware
gptkbp:abilities data exfiltration
command execution
screenshot capture
keylogging
gptkbp:alsoKnownAs gptkb:Nemesis_Gemina
gptkb:TinyBaron
gptkbp:deliveredBy malicious attachments
spear phishing
gptkbp:discoveredBy gptkb:Kaspersky_Lab
gptkb:F-Secure
gptkbp:firstObserved 2014
https://www.w3.org/2000/01/rdf-schema#label CosmicDuke
gptkbp:operatingSystem gptkb:Windows
gptkbp:programmingLanguage gptkb:C++
gptkbp:relatedTo gptkb:MiniDuke
gptkb:OnionDuke
gptkbp:target gptkb:energy
government organizations
military organizations
telecommunications sector
diplomatic institutions
gptkbp:usedBy gptkb:Cozy_Bear
gptkb:APT29
gptkbp:uses gptkb:Tor_network
custom encryption
stealth techniques
gptkbp:usesMalware backdoor
information stealer
gptkbp:bfsParent gptkb:Cozy_Bear
gptkbp:bfsLayer 6