Alternative names (1)
C2ProtocolRandom triples
| Subject | Object |
|---|---|
| gptkb:SmokeLoader | HTTPS |
| gptkb:POWERSTATS_Loader | SMTP |
| gptkb:Manuscrypt_malware | HTTPS |
| gptkb:SofacySeduploader | gptkb:HTTP |
| gptkb:ScarCruft_backdoor | gptkb:HTTP |
| gptkb:MuddyWater_Remote_Access_Trojan | gptkb:HTTP |
| gptkb:SmokeLoader | custom protocols |
| gptkb:RAT_Fallchill | gptkb:HTTP |
| gptkb:ObliqueRAT | gptkb:HTTP |
| gptkb:MuddyWater_Remote_Access_Trojan | DNS tunneling |
| gptkb:SmokeLoader | gptkb:HTTP |
| gptkb:TunnusSched_malware | gptkb:DNS |
| gptkb:POWERSTATS_backdoor | gptkb:DNS |
| gptkb:Pikabot | gptkb:TCP |
| gptkb:BlackEnergy_3 | proxy servers |
| gptkb:SDBbot | gptkb:TCP |
| gptkb:Shamoon_malware | no external C2 in some variants |
| gptkb:Kimsuky_RAT | gptkb:FTP |
| gptkb:Fallchill | custom protocols |
| gptkb:BlackEnergy_malware | encrypted channels |