Statements (28)
| Predicate | Object |
|---|---|
| gptkbp:instanceOf |
malware
|
| gptkbp:abilities |
remote access
data exfiltration persistence command execution |
| gptkbp:alsoKnownAs |
gptkb:BazarBackdoor
Team9 |
| gptkbp:C2Communication |
gptkb:DNS
gptkb:HTTP HTTPS |
| gptkbp:connectsTo |
gptkb:Carbanak_Group
gptkb:FIN7 |
| gptkbp:detects |
multiple antivirus vendors
|
| gptkbp:distributedBy |
malicious attachments
exploit kits malspam |
| gptkbp:firstObserved |
2016
|
| gptkbp:function |
downloads additional payloads
establishes C2 communication |
| https://www.w3.org/2000/01/rdf-schema#label |
Team9 Backdoor
|
| gptkbp:notable_campaign |
targeted financial institutions
targeted hospitality sector |
| gptkbp:platform |
gptkb:Windows
|
| gptkbp:usedBy |
cybercriminals
|
| gptkbp:usesMalware |
backdoor
|
| gptkbp:writtenBy |
gptkb:C++
|
| gptkbp:bfsParent |
gptkb:BazarBackdoor
|
| gptkbp:bfsLayer |
7
|