MuddyWater Loader

URI: https://gptkb.org/entity/MuddyWater_Loader
GPTKB entity
Statements (26)
Predicate Object
gptkbp:instanceOf malware
gptkbp:abilities download additional payloads
establish persistence
execute arbitrary code
gptkbp:alias gptkb:MuddyWater_Initial_Access_Loader
gptkb:POWERSTATS_Loader
gptkbp:associatedWith gptkb:APT34
Iranian threat actors
gptkbp:category malware loader
gptkbp:deliveredBy PowerShell scripts
remote access trojans
gptkbp:firstObserved 2017
https://www.w3.org/2000/01/rdf-schema#label MuddyWater Loader
gptkbp:platform gptkb:Windows
gptkbp:programmingLanguage gptkb:Visual_Basic_Script
gptkb:PowerShell
gptkbp:target gptkb:Middle_East
gptkb:energy
government organizations
telecommunications sector
gptkbp:usedBy gptkb:MuddyWater_group
gptkbp:usesMalware loader
gptkbp:vectorFor phishing emails
malicious attachments
gptkbp:bfsParent gptkb:MuddyWater
gptkbp:bfsLayer 6