Project Sauron

GPTKB entity

Statements (66)
Predicate Object
gptkbp:instanceOf advanced persistent threat
gptkbp:activeYearsStart at least 2011
gptkbp:alsoKnownAs gptkb:Strider
gptkbp:dataCompromised network topology
passwords
cryptographic keys
log files
configuration files
system configuration
system updates
encryption keys
private keys
system services
network traffic
user credentials
application data
browser history
system logs
system information
system events
system notifications
system processes
security certificates
system alerts
system messages
network shares
clipboard data
keystrokes
USB drive data
contact lists
database files
email communications
encrypted files
network credentials
removable media contents
sensitive documents
system drivers
system errors
system patches
system registry
system snapshots
system tasks
system vulnerabilities
system warnings
gptkbp:discoveredBy gptkb:Kaspersky_Lab
gptkbp:discoveredIn 2016
https://www.w3.org/2000/01/rdf-schema#label Project Sauron
gptkbp:majorCity gptkb:Belgium
gptkb:Iran
gptkb:Italy
gptkb:Russia
gptkb:Rwanda
gptkbp:notableFor data exfiltration
custom malware implants
stealthy cyber-espionage
gptkbp:target government organizations
military organizations
research organizations
telecommunications organizations
gptkbp:uses encrypted communications
fileless malware techniques
custom communication protocols
modular plugins
gptkbp:usesMalware modular malware platform
gptkbp:bfsParent gptkb:Strider_organization
gptkbp:bfsLayer 6