|
gptkbp:instanceOf
|
malware
|
|
gptkbp:abilities
|
audio recordings
data theft
modular architecture
screenshot capture
network traffic monitoring
Bluetooth device scanning
keyboard logging
|
|
gptkbp:alsoKnownAs
|
Flamer
Skywiper
|
|
gptkbp:category
|
malware
Trojan
worm
|
|
gptkbp:discoveredBy
|
gptkb:Kaspersky_Lab
gptkb:CrySyS_Lab
|
|
gptkbp:discoveredIn
|
2012
|
|
https://www.w3.org/2000/01/rdf-schema#label
|
Flame malware
|
|
gptkbp:notableFeature
|
data exfiltration
command and control servers
encrypted communications
audio surveillance
network propagation
self-destruct capability
complex codebase
document theft
fake Microsoft certificate
keystroke logging
modular plug-ins
screenshot logging
|
|
gptkbp:notableInfection
|
gptkb:Egypt
gptkb:Iran
gptkb:Israel
gptkb:Lebanon
gptkb:Saudi_Arabia
gptkb:Sudan
gptkb:Syria
|
|
gptkbp:platform
|
gptkb:Microsoft_Windows
|
|
gptkbp:programmingLanguage
|
gptkb:Lua
gptkb:C++
|
|
gptkbp:purpose
|
cybercrime
|
|
gptkbp:region
|
gptkb:Middle_East
|
|
gptkbp:relatedTo
|
gptkb:Stuxnet
gptkb:Duqu
|
|
gptkbp:removes
|
Microsoft security update
|
|
gptkbp:signatureRevokedBy
|
gptkb:Microsoft
|
|
gptkbp:size
|
~20 MB
|
|
gptkbp:spreadTo
|
phishing emails
USB drives
local network
|
|
gptkbp:type
|
cyber-espionage tool
|
|
gptkbp:bfsParent
|
gptkb:discovery_of_Flame_malware
gptkb:Stuxnet_operation
gptkb:Equation_Group
|
|
gptkbp:bfsLayer
|
7
|