|
gptkbp:instanceOf
|
Remote Access Trojan
|
|
gptkbp:abilities
|
File transfer
Keylogging
Password stealing
Remote desktop control
Screen capture
Webcam access
|
|
gptkbp:alsoKnownAs
|
gptkb:NanoCore
|
|
gptkbp:antiAnalysis
|
Obfuscation techniques
|
|
gptkbp:arrested
|
Taylor Huddleston arrested in 2017
|
|
gptkbp:category
|
Cybercrime tool
|
|
gptkbp:commanded
|
Remote server
|
|
gptkbp:customs
|
Yes
|
|
gptkbp:detects
|
gptkb:Kaspersky
gptkb:Symantec
gptkb:Microsoft_Defender
gptkb:McAfee
Antivirus software
|
|
gptkbp:developedBy
|
gptkb:Taylor_Huddleston
|
|
gptkbp:distributedBy
|
Exploit kits
Malicious attachments
Phishing emails
|
|
gptkbp:encryption
|
Supports encrypted communication
|
|
gptkbp:firstReleased
|
2013
|
|
https://www.w3.org/2000/01/rdf-schema#label
|
NANOCORE RAT
|
|
gptkbp:legalStatus
|
Illegal to use for unauthorized access
|
|
gptkbp:modularDesign
|
Yes
|
|
gptkbp:notableEvent
|
Used in global cyberattacks
|
|
gptkbp:persistenceMechanism
|
Registry modification
Startup folder
|
|
gptkbp:platform
|
gptkb:Windows
|
|
gptkbp:priceRange
|
Sold on underground forums
|
|
gptkbp:programmingLanguage
|
gptkb:.NET
|
|
gptkbp:relatedTo
|
gptkb:DarkComet_RAT
gptkb:Quasar_RAT
gptkb:njRAT
|
|
gptkbp:repository
|
Leaked online
|
|
gptkbp:signature
|
Detected by multiple AV engines
|
|
gptkbp:target
|
Businesses
Individuals
Government organizations
|
|
gptkbp:type
|
malware
|
|
gptkbp:usedFor
|
Data theft
Botnet creation
Cyber espionage
|
|
gptkbp:usesMalware
|
Remote Access Trojans
|
|
gptkbp:bfsParent
|
gptkb:APT33
|
|
gptkbp:bfsLayer
|
6
|