S0653Windows

S0653xCaon

Platforms
1
ATT&CK
14.1
References
3

Description

[xCaon](https://attack.mitre.org/software/S0653) is an HTTP variant of the [BoxCaon](https://attack.mitre.org/software/S0651) malware family that has used by [IndigoZebra](https://attack.mitre.org/groups/G0136) since at least 2014. [xCaon](https://attack.mitre.org/software/S0653) has been used to target political entities in Central Asia, including Kyrgyzstan and Uzbekistan.(Citation: Checkpoint IndigoZebra July 2021)(Citation: Securelist APT Trends Q2 2017)

Platforms· 1

Windows

Attributed to1

TypeTargetConfidenceTier
GroupIndigoZebrag0136100%live

References

  1. https://attack.mitre.org/software/S0653
  2. https://research.checkpoint.com/2021/indigozebra-apt-continues-to-attack-central-asia-with-evolving-tools/
  3. https://securelist.com/apt-trends-report-q2-2017/79332/

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Software
BoxCaon
Actor
IndigoZebra
Software
ECCENTRICBANDWAGON
Software
KONNI
Software
Cannon
Software
Pony
Sourced from MITRE ATT&CK Enterprise 14.1. Curated by Adam Lundqvist, SQUR.