Statements (33)
| Predicate | Object |
|---|---|
| gptkbp:instanceOf |
gptkb:malware
|
| gptkbp:abilities |
file upload
data exfiltration screenshot capture command and control communication file download keylogging process manipulation |
| gptkbp:alsoKnownAs |
gptkb:Manuscrypt_malware
gptkb:NukeSped |
| gptkbp:category |
gptkb:cyber_espionage_tool
|
| gptkbp:connectsTo |
gptkb:North_Korea
|
| gptkbp:detects |
gptkb:ESET
gptkb:Kaspersky_Lab gptkb:Symantec |
| gptkbp:developedBy |
gptkb:Lazarus_Group
|
| gptkbp:firstObserved |
2017
|
| gptkbp:platform |
gptkb:Windows
gptkb:macOS |
| gptkbp:usedBy |
gptkb:Lazarus_Group
|
| gptkbp:usedIn |
supply chain attacks
attacks on defense industry attacks on government organizations targeted attacks on cryptocurrency organizations |
| gptkbp:uses |
custom encryption
modular architecture HTTP for C2 communication RC4 encryption |
| gptkbp:usesMalware |
gptkb:Trojan
backdoor |
| gptkbp:bfsParent |
gptkb:Lazarus_Group
|
| gptkbp:bfsLayer |
6
|
| https://www.w3.org/2000/01/rdf-schema#label |
Manuscrypt
|