Statements (26)
Predicate | Object |
---|---|
gptkbp:instanceOf |
malware
|
gptkbp:abilities |
download additional payloads
establish persistence execute arbitrary code |
gptkbp:alias |
gptkb:MuddyWater_Initial_Access_Loader
gptkb:POWERSTATS_Loader |
gptkbp:associatedWith |
gptkb:APT34
Iranian threat actors |
gptkbp:category |
malware loader
|
gptkbp:deliveredBy |
PowerShell scripts
remote access trojans |
gptkbp:firstObserved |
2017
|
https://www.w3.org/2000/01/rdf-schema#label |
MuddyWater Loader
|
gptkbp:platform |
gptkb:Windows
|
gptkbp:programmingLanguage |
gptkb:Visual_Basic_Script
gptkb:PowerShell |
gptkbp:target |
gptkb:Middle_East
gptkb:energy government organizations telecommunications sector |
gptkbp:usedBy |
gptkb:MuddyWater_group
|
gptkbp:usesMalware |
loader
|
gptkbp:vectorFor |
phishing emails
malicious attachments |
gptkbp:bfsParent |
gptkb:MuddyWater
|
gptkbp:bfsLayer |
6
|