LightNeuron

GPTKB entity

Statements (29)
Predicate Object
gptkbp:instanceOf malware
gptkbp:alsoKnownAs neurons
gptkbp:associatedWith APT group Turla
gptkbp:discoveredBy gptkb:ESET
gptkbp:exploits Microsoft Exchange Transport Agent API
gptkbp:firstReported 2019
https://www.w3.org/2000/01/rdf-schema#label LightNeuron
gptkbp:notableFeature first known malware to target Microsoft Exchange Transport Agent API
gptkbp:persistenceMechanism Exchange Transport Agent
gptkbp:platform gptkb:Microsoft_Exchange
gptkbp:primaryUse command and control
data exfiltration
email interception
gptkbp:removalDifficulty high
gptkbp:supportsProtocol steganography in email attachments
gptkbp:target government organizations
military organizations
diplomatic entities
gptkbp:usedBy gptkb:Turla
gptkbp:usesMalware backdoor
email hijacker
gptkbp:writtenBy gptkb:C#
gptkb:Visual_Basic_.NET
gptkbp:分布地区 gptkb:Middle_East
gptkb:South_America
gptkb:Eastern_Europe
gptkbp:bfsParent gptkb:LightNeuron_malware
gptkb:Turla_Group
gptkbp:bfsLayer 7