S0475Windows

S0475BackConfig

Platforms
1
ATT&CK
14.1
References
2

Description

[BackConfig](https://attack.mitre.org/software/S0475) is a custom Trojan with a flexible plugin architecture that has been used by [Patchwork](https://attack.mitre.org/groups/G0040).(Citation: Unit 42 BackConfig May 2020) Documented platforms: Windows. Attributed to ATT&CK group: Patchwork. Catalogued in ATT&CK 14.1. 2 references curated.

Platforms· 1

Windows

Attributed to1

TypeTargetConfidenceTier
GroupPatchworkg004095%live

References

  1. https://attack.mitre.org/software/S0475
  2. https://unit42.paloaltonetworks.com/updated-backconfig-malware-targeting-government-and-military-organizations/

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Software
SDBbot
Software
SYSCON
Software
UPPERCUT
Software
Valak
Software
NDiskMonitor
Software
BadPatch
Sourced from MITRE ATT&CK Enterprise 14.1. Curated by Adam Lundqvist, SQUR.