|
gptkbp:instanceOf
|
malware
|
|
gptkbp:abilities
|
file upload
data exfiltration
command execution
screenshot capture
file download
keylogging
system information gathering
|
|
gptkbp:alsoKnownAs
|
gptkb:Manuscrypt
gptkb:NukeSped
|
|
gptkbp:category
|
cyber espionage tool
|
|
gptkbp:connectsTo
|
North Korean APT
|
|
gptkbp:detects
|
gptkb:ESET
gptkb:Kaspersky_Lab
gptkb:Symantec
|
|
gptkbp:distributedBy
|
phishing emails
watering hole attacks
malicious documents
|
|
gptkbp:firstReported
|
2019
|
|
https://www.w3.org/2000/01/rdf-schema#label
|
Trojan Manuscrypt
|
|
gptkbp:notableBattle
|
attacks on defense industry
attacks on government organizations
attacks on cryptocurrency exchanges
|
|
gptkbp:persistenceMechanism
|
gptkb:Windows_registry
scheduled tasks
service installation
|
|
gptkbp:programmingLanguage
|
gptkb:C++
|
|
gptkbp:relatedTo
|
gptkb:Operation_Sharpshooter
gptkb:Operation_AppleJeus
|
|
gptkbp:supportsProtocol
|
gptkb:HTTP
HTTPS
custom protocols
|
|
gptkbp:target
|
gptkb:Windows_operating_systems
|
|
gptkbp:usedBy
|
gptkb:Lazarus_Group
|
|
gptkbp:usesMalware
|
Trojan
trojan
|
|
gptkbp:bfsParent
|
gptkb:Operation_GhostSecret
|
|
gptkbp:bfsLayer
|
7
|