Statements (21)
| Predicate | Object |
|---|---|
| gptkbp:instanceOf |
gptkb:malware
|
| gptkbp:abilities |
file upload
command execution screenshot capture file download keylogging |
| gptkbp:alias |
POWERTON
PowerShell RAT |
| gptkbp:associatedWith |
Iranian cyber espionage
|
| gptkbp:C2Communication |
gptkb:DNS
gptkb:HTTP |
| gptkbp:deliveredBy |
phishing email
malicious document |
| gptkbp:firstObserved |
2017
|
| gptkbp:platform |
gptkb:Windows
|
| gptkbp:programmingLanguage |
gptkb:PowerShell
|
| gptkbp:type |
gptkb:Trojan
|
| gptkbp:usedBy |
gptkb:APT34
|
| gptkbp:bfsParent |
gptkb:MuddyWater_PowerShell_Backdoor
|
| gptkbp:bfsLayer |
7
|
| https://www.w3.org/2000/01/rdf-schema#label |
POWERSTATS backdoor
|