S0569Windows

S0569Explosive

Platforms
1
ATT&CK
14.1
References
3

Description

[Explosive](https://attack.mitre.org/software/S0569) is a custom-made remote access tool used by the group [Volatile Cedar](https://attack.mitre.org/groups/G0123). It was first identified in the wild in 2015.(Citation: CheckPoint Volatile Cedar March 2015)(Citation: ClearSky Lebanese Cedar Jan 2021)

Platforms· 1

Windows

Attributed to1

TypeTargetConfidenceTier
GroupVolatile Cedarg012395%live

References

  1. https://attack.mitre.org/software/S0569
  2. https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2015/03/20082004/volatile-cedar-technical-report.pdf
  3. https://www.clearskysec.com/wp-content/uploads/2021/01/Lebanese-Cedar-APT.pdf

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Software
EVILNUM
Software
Ferocious
Software
SpicyOmelette
Actor
Volatile Cedar
Software
RemoteUtilities
Software
Spark
Sourced from MITRE ATT&CK Enterprise 14.1. Curated by Adam Lundqvist, SQUR.