Manuscrypt

GPTKB entity

Statements (33)
Predicate Object
gptkbp:instanceOf malware
gptkbp:abilities file upload
data exfiltration
screenshot capture
command and control communication
file download
keylogging
process manipulation
gptkbp:alsoKnownAs gptkb:Manuscrypt_malware
gptkb:NukeSped
gptkbp:category cyber espionage tool
gptkbp:connectsTo gptkb:North_Korea
gptkbp:detects gptkb:ESET
gptkb:Kaspersky_Lab
gptkb:Symantec
gptkbp:developedBy gptkb:Lazarus_Group
gptkbp:firstObserved 2017
https://www.w3.org/2000/01/rdf-schema#label Manuscrypt
gptkbp:platform gptkb:Windows
gptkb:macOS
gptkbp:usedBy gptkb:Lazarus_Group
gptkbp:usedIn supply chain attacks
attacks on defense industry
attacks on government organizations
targeted attacks on cryptocurrency organizations
gptkbp:uses custom encryption
modular architecture
HTTP for C2 communication
RC4 encryption
gptkbp:usesMalware Trojan
backdoor
gptkbp:bfsParent gptkb:Lazarus_Group
gptkbp:bfsLayer 6