Pikabot

GPTKB entity

Statements (30)
Predicate Object
gptkbp:instanceOf malware
gptkbp:abilities persistence
information stealing
lateral movement
remote code execution
gptkbp:alias gptkb:PikaBot
gptkbp:associatedWith cybercrime
ransomware operators
gptkbp:C2Communication gptkb:HTTP
gptkb:TCP
encrypted channels
gptkbp:deliveredBy malspam campaigns
gptkbp:detects security researchers
gptkbp:firstObserved 2023
https://www.w3.org/2000/01/rdf-schema#label Pikabot
gptkbp:notable_campaign 2023 phishing campaigns
gptkbp:payloadsDelivered gptkb:Cobalt_Strike
malware
gptkbp:platform gptkb:Windows
gptkbp:similarTo gptkb:QakBot
gptkbp:type modular malware
gptkbp:usedFor command and control
initial access
payload delivery
gptkbp:uses modular architecture
encrypted communication
obfuscation techniques
gptkbp:writtenBy C
gptkbp:bfsParent gptkb:Operation_Endgame
gptkbp:bfsLayer 5