OnionDuke

GPTKB entity

Statements (20)
Predicate Object
gptkbp:instanceOf malware
gptkbp:abilities remote access
data theft
downloading additional payloads
gptkbp:associatedWith gptkb:APT28
gptkbp:discoveredBy 2014
gptkbp:distributedBy watering hole attacks
malicious Tor exit nodes
https://www.w3.org/2000/01/rdf-schema#label OnionDuke
gptkbp:notableFor use of Tor network for distribution
gptkbp:relatedTo gptkb:CosmicDuke
gptkb:MiniDuke
gptkbp:target gptkb:government_agency
gptkb:Windows_operating_systems
European organizations
gptkbp:type trojan
gptkbp:uses DLL side-loading
encrypted communication channels
gptkbp:bfsParent gptkb:Cozy_Bear
gptkbp:bfsLayer 6