S0642Windows

S0642BADFLICK

Platforms
1
ATT&CK
14.1
References
3

Description

[BADFLICK](https://attack.mitre.org/software/S0642) is a backdoor used by [Leviathan](https://attack.mitre.org/groups/G0065) in spearphishing campaigns first reported in 2018 that targeted the U.S. engineering and maritime industries.(Citation: FireEye Periscope March 2018)(Citation: Accenture MUDCARP March 2019)

Platforms· 1

Windows

Attributed to1

TypeTargetConfidenceTier
GroupLeviathang0065100%live

References

  1. https://attack.mitre.org/software/S0642
  2. https://www.fireeye.com/blog/threat-research/2018/03/suspected-chinese-espionage-group-targeting-maritime-and-engineering-industries.html
  3. https://www.accenture.com/us-en/blogs/cyber-defense/mudcarps-focus-on-submarine-technologies

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Software
EVILNUM
Software
BADHATCH
Software
Anchor
Software
VBShower
Software
HOMEFRY
Software
SDBbot
Sourced from MITRE ATT&CK Enterprise 14.1. Curated by Adam Lundqvist, SQUR.