TrickBot Anchor

GPTKB entity

Statements (24)
Predicate Object
gptkbp:instanceOf malware
gptkbp:abilities modular architecture
fileless persistence
stealthy communication
gptkbp:alsoKnownAs gptkb:Anchor
Anchor_DNS
gptkbp:communicatesVia HTTPS
DNS tunneling
gptkbp:developedBy gptkb:TrickBot_group
gptkbp:firstObserved 2018
https://www.w3.org/2000/01/rdf-schema#label TrickBot Anchor
gptkbp:partOf gptkb:TrickBot
gptkbp:platform gptkb:Windows
gptkbp:relatedTo gptkb:Conti_ransomware
gptkb:Ryuk_ransomware
gptkbp:target financial institutions
corporate networks
gptkbp:usedFor command and control
data exfiltration
persistence
gptkbp:usesMalware loader
backdoor
gptkbp:bfsParent gptkb:Wizard_Spider_group
gptkbp:bfsLayer 6