S0513Windows

S0513LiteDuke

Platforms
1
ATT&CK
14.1
References
2

Description

[LiteDuke](https://attack.mitre.org/software/S0513) is a third stage backdoor that was used by [APT29](https://attack.mitre.org/groups/G0016), primarily in 2014-2015. [LiteDuke](https://attack.mitre.org/software/S0513) used the same dropper as [PolyglotDuke](https://attack.mitre.org/software/S0518), and was found on machines also compromised by [MiniDuke](https://attack.mitre.org/software/S0051).(Citation: ESET Dukes October 2019)

Platforms· 1

Windows

Attributed to1

TypeTargetConfidenceTier
GroupAPT29g0016100%live

References

  1. https://attack.mitre.org/software/S0513
  2. https://www.welivesecurity.com/wp-content/uploads/2019/10/ESET_Operation_Ghost_Dukes.pdf

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Software
FatDuke
Software
MiniDuke
Software
SeaDuke
Software
PolyglotDuke
Software
RegDuke
Software
OnionDuke
Sourced from MITRE ATT&CK Enterprise 14.1. Curated by Adam Lundqvist, SQUR.