Trojan Manuscrypt

GPTKB entity

Statements (38)
Predicate Object
gptkbp:instanceOf malware
gptkbp:abilities file upload
data exfiltration
command execution
screenshot capture
file download
keylogging
system information gathering
gptkbp:alsoKnownAs gptkb:Manuscrypt
gptkb:NukeSped
gptkbp:category cyber espionage tool
gptkbp:connectsTo North Korean APT
gptkbp:detects gptkb:ESET
gptkb:Kaspersky_Lab
gptkb:Symantec
gptkbp:distributedBy phishing emails
watering hole attacks
malicious documents
gptkbp:firstReported 2019
https://www.w3.org/2000/01/rdf-schema#label Trojan Manuscrypt
gptkbp:notableBattle attacks on defense industry
attacks on government organizations
attacks on cryptocurrency exchanges
gptkbp:persistenceMechanism gptkb:Windows_registry
scheduled tasks
service installation
gptkbp:programmingLanguage gptkb:C++
gptkbp:relatedTo gptkb:Operation_Sharpshooter
gptkb:Operation_AppleJeus
gptkbp:supportsProtocol gptkb:HTTP
HTTPS
custom protocols
gptkbp:target gptkb:Windows_operating_systems
gptkbp:usedBy gptkb:Lazarus_Group
gptkbp:usesMalware Trojan
trojan
gptkbp:bfsParent gptkb:Operation_GhostSecret
gptkbp:bfsLayer 7