MuddyWater Initial Access Loader

URI: https://gptkb.org/entity/MuddyWater_Initial_Access_Loader
GPTKB entity
Statements (22)
Predicate Object
gptkbp:instanceOf malware
gptkbp:alias gptkb:MuddyWater_Loader
gptkb:POWERSTATS
gptkbp:associatedWith gptkb:APT34
Iranian threat actors
gptkbp:deliveredBy backdoors
phishing emails
malicious attachments
PowerShell payloads
gptkbp:firstObserved 2017
https://www.w3.org/2000/01/rdf-schema#label MuddyWater Initial Access Loader
gptkbp:target government entities
organizations in the Middle East
gptkbp:usedBy gptkb:MuddyWater
gptkbp:usedFor malware delivery
initial access
gptkbp:usesMalware loader
dropper
gptkbp:writtenBy gptkb:PowerShell
gptkb:VBS
gptkbp:bfsParent gptkb:MuddyWater_Loader
gptkbp:bfsLayer 7