Shamoon 2

URI: https://gptkb.org/entity/Shamoon_2
GPTKB entity
Statements (28)
Predicate Object
gptkbp:instanceOf malware
gptkbp:alsoKnownAs Disttrack 2
gptkbp:deliveredBy phishing
compromised credentials
gptkbp:disablesSystemRecovery true
gptkbp:firstObserved 2016
https://www.w3.org/2000/01/rdf-schema#label Shamoon 2
gptkbp:language gptkb:Arabic
English
gptkbp:notableBattle gptkb:Saudi_Arabia
gptkb:energy
gptkbp:notableFor 2017
gptkbp:notableVictim gptkb:Saudi_Aramco
gptkb:Sadara_Chemical_Company
gptkbp:overwritesMBR true
gptkbp:payload disk wiping
gptkbp:platform gptkb:Microsoft_Windows
gptkbp:primaryUse data destruction
gptkbp:relatedTo gptkb:Shamoon
Iranian threat actors
gptkbp:removesSystemFiles true
gptkbp:usesCredentialTheft true
gptkbp:usesMalware gptkb:Shamoon_family
wiper
gptkbp:usesNetworkPropagation true
gptkbp:bfsParent gptkb:Shamoon
gptkb:Shamoon_2.0_attacks
gptkbp:bfsLayer 6