S0461Windows

S0461SDBbot

Platforms
1
ATT&CK
14.1
References
3

Description

[SDBbot](https://attack.mitre.org/software/S0461) is a backdoor with installer and loader components that has been used by [TA505](https://attack.mitre.org/groups/G0092) since at least 2019.(Citation: Proofpoint TA505 October 2019)(Citation: IBM TA505 April 2020) Documented platforms: Windows. Attributed to ATT&CK group: TA505. Catalogued in ATT&CK 14.1. 3 references curated.

Platforms· 1

Windows

Attributed to1

TypeTargetConfidenceTier
GroupTA505g0092100%live

References

  1. https://attack.mitre.org/software/S0461
  2. https://securityintelligence.com/posts/ta505-continues-to-infect-networks-with-sdbbot-rat/
  3. https://www.proofpoint.com/us/threat-insight/post/ta505-distributes-new-sdbbot-remote-access-trojan-get2-downloader

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Software
EVILNUM
Software
Sibot
Software
Anchor
Software
PipeMon
Software
SYSCON
Software
Socksbot
Sourced from MITRE ATT&CK Enterprise 14.1. Curated by Adam Lundqvist, SQUR.