Statements (32)
| Predicate | Object |
|---|---|
| gptkbp:instanceOf |
malware
|
| gptkbp:abilities |
gptkb:SOCKS5_proxy
automatic persistence encrypted communication |
| gptkbp:alsoKnownAs |
System Back Connect
|
| gptkbp:category |
backdoor
proxy malware |
| gptkbp:connectsTo |
gptkb:Conti_ransomware
gptkb:Sodinokibi_ransomware gptkb:Ryuk_ransomware |
| gptkbp:deliveredBy |
exploit kits
malspam other malware |
| gptkbp:detects |
various antivirus software
|
| gptkbp:firstObserved |
2018
|
| https://www.w3.org/2000/01/rdf-schema#label |
SystemBC
|
| gptkbp:observedBy |
gptkb:Kaspersky
gptkb:Proofpoint gptkb:Trend_Micro gptkb:Sophos |
| gptkbp:platform |
gptkb:Windows
|
| gptkbp:supportsProtocol |
gptkb:HTTP
gptkb:SOCKS5 HTTPS |
| gptkbp:usedBy |
cybercriminals
|
| gptkbp:usedFor |
command and control
remote access proxying traffic |
| gptkbp:usedIn |
ransomware campaigns
|
| gptkbp:writtenBy |
gptkb:C++
|
| gptkbp:bfsParent |
gptkb:Operation_Endgame
|
| gptkbp:bfsLayer |
5
|