S0268Windows

S0268Bisonal

Platforms
1
ATT&CK
14.1
References
3

Description

[Bisonal](https://attack.mitre.org/software/S0268) is a remote access tool (RAT) that has been used by [Tonto Team](https://attack.mitre.org/groups/G0131) against public and private sector organizations in Russia, South Korea, and Japan since at least December 2010.(Citation: Unit 42 Bisonal July 2018)(Citation: Talos Bisonal Mar 2020)

Platforms· 1

Windows

Attributed to1

TypeTargetConfidenceTier
GroupTonto Teamg0131100%live

References

  1. https://attack.mitre.org/software/S0268
  2. https://researchcenter.paloaltonetworks.com/2018/07/unit42-bisonal-malware-used-attacks-russia-south-korea/
  3. https://blog.talosintelligence.com/2020/03/bisonal-10-years-of-play.html

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Software
Bandook
Software
KONNI
Software
NavRAT
Software
Action RAT
Software
ROKRAT
Software
EVILNUM
Sourced from MITRE ATT&CK Enterprise 14.1. Curated by Adam Lundqvist, SQUR.