S0124Windows

S0124Pisloader

Platforms
1
ATT&CK
14.1
References
2

Description

[Pisloader](https://attack.mitre.org/software/S0124) is a malware family that is notable due to its use of DNS as a C2 protocol as well as its use of anti-analysis tactics. It has been used by [APT18](https://attack.mitre.org/groups/G0026) and is similar to another malware family, [HTTPBrowser](https://attack.mitre.org/software/S0070), that has been used by the group. (Citation: Palo Alto DNS Requests)

Platforms· 1

Windows

References

  1. https://attack.mitre.org/software/S0124
  2. http://researchcenter.paloaltonetworks.com/2016/05/unit42-new-wekby-attacks-use-dns-requests-as-command-and-control-mechanism/

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Software
CHOPSTICK
Software
Smoke Loader
Software
P8RAT
Software
JSS Loader
Software
Starloader
Software
USBStealer
Sourced from MITRE ATT&CK Enterprise 14.1. Curated by Adam Lundqvist, SQUR.