Statements (22)
| Predicate | Object |
|---|---|
| gptkbp:instanceOf |
gptkb:malware
|
| gptkbp:associatedWith |
gptkb:APT38
|
| gptkbp:discoveredBy |
gptkb:Kaspersky
|
| gptkbp:firstObserved |
2020
|
| gptkbp:notableBattle |
South Korean companies
|
| gptkbp:operatedBy |
gptkb:Lazarus_Group
|
| gptkbp:platform |
gptkb:Windows
|
| gptkbp:propagation |
manual deployment
exploiting Active Directory |
| gptkbp:ransomDemanded |
gptkb:Bitcoin
|
| gptkbp:ransomNoteExtension |
.vhd
|
| gptkbp:relatedTo |
Egregor ransomware
|
| gptkbp:supportsAlgorithm |
gptkb:RSA
gptkb:AES |
| gptkbp:technique |
lateral movement
deleting shadow copies disabling system recovery network share encryption |
| gptkbp:usesMalware |
crypto-ransomware
|
| gptkbp:bfsParent |
gptkb:Lazarus_Team
|
| gptkbp:bfsLayer |
8
|
| https://www.w3.org/2000/01/rdf-schema#label |
VHD ransomware
|