Statements (24)
| Predicate | Object |
|---|---|
| gptkbp:instanceOf |
malware
|
| gptkbp:abilities |
modular architecture
fileless persistence stealthy communication |
| gptkbp:alsoKnownAs |
gptkb:Anchor
Anchor_DNS |
| gptkbp:communicatesVia |
HTTPS
DNS tunneling |
| gptkbp:developedBy |
gptkb:TrickBot_group
|
| gptkbp:firstObserved |
2018
|
| https://www.w3.org/2000/01/rdf-schema#label |
TrickBot Anchor
|
| gptkbp:partOf |
gptkb:TrickBot
|
| gptkbp:platform |
gptkb:Windows
|
| gptkbp:relatedTo |
gptkb:Conti_ransomware
gptkb:Ryuk_ransomware |
| gptkbp:target |
financial institutions
corporate networks |
| gptkbp:usedFor |
command and control
data exfiltration persistence |
| gptkbp:usesMalware |
loader
backdoor |
| gptkbp:bfsParent |
gptkb:Wizard_Spider_group
|
| gptkbp:bfsLayer |
6
|