Statements (66)
Predicate | Object |
---|---|
gptkbp:instanceOf |
advanced persistent threat
|
gptkbp:activeYearsStart |
at least 2011
|
gptkbp:alsoKnownAs |
gptkb:Strider
|
gptkbp:dataCompromised |
network topology
passwords cryptographic keys log files configuration files system configuration system updates encryption keys private keys system services network traffic user credentials application data browser history system logs system information system events system notifications system processes security certificates system alerts system messages network shares clipboard data keystrokes USB drive data contact lists database files email communications encrypted files network credentials removable media contents sensitive documents system drivers system errors system patches system registry system snapshots system tasks system vulnerabilities system warnings |
gptkbp:discoveredBy |
gptkb:Kaspersky_Lab
|
gptkbp:discoveredIn |
2016
|
https://www.w3.org/2000/01/rdf-schema#label |
Project Sauron
|
gptkbp:majorCity |
gptkb:Belgium
gptkb:Iran gptkb:Italy gptkb:Russia gptkb:Rwanda |
gptkbp:notableFor |
data exfiltration
custom malware implants stealthy cyber-espionage |
gptkbp:target |
government organizations
military organizations research organizations telecommunications organizations |
gptkbp:uses |
encrypted communications
fileless malware techniques custom communication protocols modular plugins |
gptkbp:usesMalware |
modular malware platform
|
gptkbp:bfsParent |
gptkb:Strider_organization
|
gptkbp:bfsLayer |
6
|