S0013Windows

S0013PlugX

Platforms
1
ATT&CK
14.1
References
7

Description

[PlugX](https://attack.mitre.org/software/S0013) is a remote access tool (RAT) with modular plugins that has been used by multiple threat groups.(Citation: Lastline PlugX Analysis)(Citation: FireEye Clandestine Fox Part 2)(Citation: New DragonOK)(Citation: Dell TG-3390) Documented platforms: Windows. Catalogued in ATT&CK 14.1. 7 references curated.

Platforms· 1

Windows

References

  1. https://attack.mitre.org/software/S0013
  2. http://circl.lu/assets/files/tr-12/tr-12-circl-plugx-analysis-v1.pdf
  3. https://www.secureworks.com/research/threat-group-3390-targets-organizations-for-cyberespionage
  4. http://researchcenter.paloaltonetworks.com/2015/04/unit-42-identifies-new-dragonok-backdoor-malware-deployed-against-japanese-targets/
  5. https://web.archive.org/web/20230115144216/http://www.novetta.com/wp-content/uploads/2014/11/Executive_Summary-Final_1.pdf
  6. https://www.fireeye.com/blog/threat-research/2014/06/clandestine-fox-part-deux.html
  7. http://labs.lastline.com/an-analysis-of-plugx

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Software
PoisonIvy
Software
ZeroT
Software
NETWIRE
Software
3PARA RAT
Software
LiteDuke
Software
UBoatRAT
Sourced from MITRE ATT&CK Enterprise 14.1. Curated by Adam Lundqvist, SQUR.