USBThief

GPTKB entity

Statements (20)
Predicate Object
gptkbp:instanceOf malware
gptkbp:alsoKnownAs Win32/PSW.Stealer.NAI
gptkbp:analyzes gptkb:ESET
gptkbp:canSteal passwords
encryption keys
sensitive files
gptkbp:category USB malware
stealth malware
gptkbp:discoveredBy 2016
gptkbp:doesNotLeave traces on infected system
gptkbp:executesFrom removable USB device
https://www.w3.org/2000/01/rdf-schema#label USBThief
gptkbp:platform gptkb:Windows
gptkbp:propagation infected USB drives
gptkbp:uses multi-stage payload
self-encryption
anti-forensic techniques
gptkbp:usesMalware information stealer
gptkbp:bfsParent gptkb:USBStealer
gptkbp:bfsLayer 7