Statements (28)
| Predicate | Object |
|---|---|
| gptkbp:instanceOf |
cyber threat group
|
| gptkbp:activeYearsStart |
2017
|
| gptkbp:alsoKnownAs |
Tortoiseshell
Imperial Kitten |
| gptkbp:area |
gptkb:Europe
gptkb:Middle_East gptkb:United_States |
| gptkbp:associatedWith |
gptkb:Iranian_government
|
| gptkbp:attributedTo |
gptkb:Microsoft
gptkb:Mandiant gptkb:Secureworks |
| gptkbp:countryOfOrigin |
gptkb:Iran
|
| https://www.w3.org/2000/01/rdf-schema#label |
TA44
|
| gptkbp:industry |
gptkb:government
IT defense telecommunications |
| gptkbp:mainLanguage |
gptkb:Persian
|
| gptkbp:relatedTo |
gptkb:APT34
gptkb:APT35 |
| gptkbp:technique |
phishing
spear phishing malware delivery via email attachments |
| gptkbp:usesMalware |
PowerShell-based tools
IMAPLoader RemoteUtilities |
| gptkbp:bfsParent |
gptkb:ACOG_optical_sight
|
| gptkbp:bfsLayer |
8
|