Statements (29)
| Predicate | Object |
|---|---|
| gptkbp:instanceOf |
gptkb:malware
|
| gptkbp:alsoKnownAs |
gptkb:neurons
|
| gptkbp:associatedWith |
APT group Turla
|
| gptkbp:discoveredBy |
gptkb:ESET
|
| gptkbp:exploits |
Microsoft Exchange Transport Agent API
|
| gptkbp:firstReported |
2019
|
| gptkbp:notableFeature |
first known malware to target Microsoft Exchange Transport Agent API
|
| gptkbp:persistenceMechanism |
Exchange Transport Agent
|
| gptkbp:platform |
gptkb:Microsoft_Exchange
|
| gptkbp:primaryUse |
command and control
data exfiltration email interception |
| gptkbp:removalDifficulty |
high
|
| gptkbp:supportsProtocol |
steganography in email attachments
|
| gptkbp:target |
government organizations
military organizations diplomatic entities |
| gptkbp:usedBy |
gptkb:Turla
|
| gptkbp:usesMalware |
backdoor
email hijacker |
| gptkbp:writtenBy |
gptkb:C#
gptkb:Visual_Basic_.NET |
| gptkbp:分布地区 |
gptkb:Middle_East
gptkb:South_America gptkb:Eastern_Europe |
| gptkbp:bfsParent |
gptkb:LightNeuron_malware
gptkb:Turla_Group |
| gptkbp:bfsLayer |
7
|
| https://www.w3.org/2000/01/rdf-schema#label |
LightNeuron
|