S0651Windows

S0651BoxCaon

Platforms
1
ATT&CK
14.1
References
3

Description

[BoxCaon](https://attack.mitre.org/software/S0651) is a Windows backdoor that was used by [IndigoZebra](https://attack.mitre.org/groups/G0136) in a 2021 spearphishing campaign against Afghan government officials. [BoxCaon](https://attack.mitre.org/software/S0651)'s name stems from similarities shared with the malware family [xCaon](https://attack.mitre.org/software/S0653).(Citation: Checkpoint IndigoZebra July 2021)

Platforms· 1

Windows

Attributed to1

TypeTargetConfidenceTier
GroupIndigoZebrag013695%live

References

  1. https://attack.mitre.org/software/S0651
  2. https://research.checkpoint.com/2021/indigozebra-apt-continues-to-attack-central-asia-with-evolving-tools/
  3. https://thehackernews.com/2021/07/indigozebra-apt-hacking-campaign.html

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Software
xCaon
Software
SDBbot
Software
FoggyWeb
Software
HDoor
Software
Zebrocy
Software
Chinoxy
Sourced from MITRE ATT&CK Enterprise 14.1. Curated by Adam Lundqvist, SQUR.