SOFTWARE
SOFTWARE
A-B
C-D
E-F
G-H
I-J
K-L
M-N
O-P
Q-R
S-T
U-V
W-X
CORALDECK
ID: S0212
Type: MALWARE
Platforms: Windows
Version: 1.1
Created: 18 April 2018
Last Modified: 30 March 2020
Techniques Used
Domain | ID | Name | Use | |
---|---|---|---|---|
Enterprise | T1560 | .001 | Archive Collected Data: Archive via Utility |
CORALDECK has created password-protected RAR, WinImage, and zip archives to be exfiltrated.[1] |
Enterprise | T1048 | .003 | Exfiltration Over Alternative Protocol: Exfiltration Over Unencrypted/Obfuscated Non-C2 Protocol | |
Enterprise | T1083 | File and Directory Discovery |
Groups That Use This Software
ID | Name | References |
---|---|---|
G0067 | APT37 |
References
×