S0497macOSLinuxWindows

S0497Dacls

Platforms
3
ATT&CK
14.1
References
3

Description

[Dacls](https://attack.mitre.org/software/S0497) is a multi-platform remote access tool used by [Lazarus Group](https://attack.mitre.org/groups/G0032) since at least December 2019.(Citation: TrendMicro macOS Dacls May 2020)(Citation: SentinelOne Lazarus macOS July 2020) Documented platforms: macOS, Linux, Windows. Attributed to ATT&CK group: Lazarus Group. Catalogued in ATT&CK 14.1. 3 references curated.

Platforms· 3

macOSLinuxWindows

References

  1. https://attack.mitre.org/software/S0497
  2. https://blog.trendmicro.com/trendlabs-security-intelligence/new-macos-dacls-rat-backdoor-show-lazarus-multi-platform-attack-capability/
  3. https://www.sentinelone.com/blog/four-distinct-families-of-lazarus-malware-target-apples-macos-platform/

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Software
DRATzarus
Software
Cryptoistic
Software
TYPEFRAME
Software
RDAT
Software
AuditCred
Software
Cadelspy
Sourced from MITRE ATT&CK Enterprise 14.1. Curated by Adam Lundqvist, SQUR.