Alternative names (1)
C2ProtocolRandom triples
| Subject | Object |
|---|---|
| gptkb:Kimsuky_RAT | SMTP |
| gptkb:Smoke_Loader | gptkb:TCP |
| gptkb:MuddyWater_Remote_Access_Trojan | gptkb:HTTP |
| gptkb:RAT_Fallchill | gptkb:HTTP |
| gptkb:Pikabot | encrypted channels |
| gptkb:Smoke_Loader | HTTPS |
| gptkb:POWERSTATS_Loader | SMTP |
| gptkb:Shamoon_malware | no external C2 in some variants |
| gptkb:POWERSTATS_Loader | gptkb:DNS |
| gptkb:Pikabot | gptkb:HTTP |
| gptkb:MuddyWater_Remote_Access_Trojan | HTTPS |
| gptkb:PowerDuke | gptkb:HTTP |
| gptkb:Pikabot | gptkb:TCP |
| gptkb:ComRAT | gptkb:Gmail |
| gptkb:ScarCruft_backdoor | HTTPS |
| gptkb:Shamoon_malware | hardcoded IP addresses |
| gptkb:Team9_Backdoor | gptkb:HTTP |
| gptkb:Fallchill | custom protocols |
| gptkb:TunnusSched_malware | HTTP(S) |
| gptkb:QUADAGENT_malware | gptkb:HTTP |