Statements (23)
| Predicate | Object |
|---|---|
| gptkbp:instanceOf |
malware
|
| gptkbp:abilities |
file management
process management remote command execution file exfiltration system reconnaissance |
| gptkbp:alsoKnownAs |
gptkb:RAT_Fallchill
|
| gptkbp:associatedWith |
gptkb:North_Korea
|
| gptkbp:C2Communication |
encrypted channels
custom protocols |
| gptkbp:deliveredBy |
spear phishing
watering hole attacks |
| gptkbp:firstObserved |
2016
|
| https://www.w3.org/2000/01/rdf-schema#label |
Fallchill
|
| gptkbp:referencedIn |
gptkb:MITRE_ATT&CK_T1219
gptkb:US-CERT_Alert_TA17-318A |
| gptkbp:removes |
gptkb:security
manual system cleaning |
| gptkbp:target |
gptkb:Windows_operating_systems
|
| gptkbp:type |
Trojan
|
| gptkbp:usedBy |
gptkb:Lazarus_Group
|
| gptkbp:bfsParent |
gptkb:Lazarus_Group
|
| gptkbp:bfsLayer |
6
|