Flame malware

GPTKB entity

Statements (54)
Predicate Object
gptkbp:instanceOf malware
gptkbp:abilities audio recordings
data theft
modular architecture
screenshot capture
network traffic monitoring
Bluetooth device scanning
keyboard logging
gptkbp:alsoKnownAs Flamer
Skywiper
gptkbp:category malware
Trojan
worm
gptkbp:discoveredBy gptkb:Kaspersky_Lab
gptkb:CrySyS_Lab
gptkbp:discoveredIn 2012
https://www.w3.org/2000/01/rdf-schema#label Flame malware
gptkbp:notableFeature data exfiltration
command and control servers
encrypted communications
audio surveillance
network propagation
self-destruct capability
complex codebase
document theft
fake Microsoft certificate
keystroke logging
modular plug-ins
screenshot logging
gptkbp:notableInfection gptkb:Egypt
gptkb:Iran
gptkb:Israel
gptkb:Lebanon
gptkb:Saudi_Arabia
gptkb:Sudan
gptkb:Syria
gptkbp:platform gptkb:Microsoft_Windows
gptkbp:programmingLanguage gptkb:Lua
gptkb:C++
gptkbp:purpose cybercrime
gptkbp:region gptkb:Middle_East
gptkbp:relatedTo gptkb:Stuxnet
gptkb:Duqu
gptkbp:removes Microsoft security update
gptkbp:signatureRevokedBy gptkb:Microsoft
gptkbp:size ~20 MB
gptkbp:spreadTo phishing emails
USB drives
local network
gptkbp:type cyber-espionage tool
gptkbp:bfsParent gptkb:discovery_of_Flame_malware
gptkb:Stuxnet_operation
gptkb:Equation_Group
gptkbp:bfsLayer 7