Operation ShadowHammer

GPTKB entity

Statements (25)
Predicate Object
gptkbp:instanceOf cybercrime
gptkbp:affectedSoftware ASUS Live Update Utility
gptkbp:category supply chain compromise
gptkbp:date 2018
gptkbp:discoveredBy gptkb:Kaspersky_Lab
gptkbp:goal install backdoor
target specific MAC addresses
https://www.w3.org/2000/01/rdf-schema#label Operation ShadowHammer
gptkbp:location global
gptkbp:method supply chain attack
malicious software update
gptkbp:notableFor targeted nature of attack
use of trusted software update mechanism
gptkbp:perpetrator gptkb:APT41
gptkb:Lazarus_Group
gptkbp:publicDisclosure March 2019
gptkbp:signature legitimate ASUS digital certificate
gptkbp:target Windows computers
ASUS users
gptkbp:victim over 1 million
gptkbp:bfsParent gptkb:APT41
gptkb:Winnti
gptkb:Winnti_malware
gptkb:Winnti_Group
gptkbp:bfsLayer 8