PipeMon

GPTKB entity

Statements (20)
Predicate Object
gptkbp:instanceOf malware
gptkbp:abilities gptkb:remote_control
persistence
modular architecture
code execution
gptkbp:discoveredBy gptkb:ESET
gptkbp:firstReported 2020
https://www.w3.org/2000/01/rdf-schema#label PipeMon
gptkbp:notableFeature modifies legitimate software
signed with valid certificate
gptkbp:operatingSystem gptkb:Windows
gptkbp:relatedTo Winnti malware family
gptkbp:target gambling industry
online casinos
gptkbp:usedBy gptkb:Winnti_Group
gptkbp:usesMalware backdoor
gptkbp:vectorFor DLL hijacking
compromised software
gptkbp:bfsParent gptkb:Operation_Winnti
gptkbp:bfsLayer 7