S1032Windows

S1032PyDCrypt

Platforms
1
ATT&CK
14.1
References
2

Description

[PyDCrypt](https://attack.mitre.org/software/S1032) is malware written in Python designed to deliver [DCSrv](https://attack.mitre.org/software/S1033). It has been used by [Moses Staff](https://attack.mitre.org/groups/G1009) since at least September 2021, with each sample tailored for its intended victim organization.(Citation: Checkpoint MosesStaff Nov 2021)

Platforms· 1

Windows

Attributed to1

TypeTargetConfidenceTier
GroupMoses Staffg100995%live

References

  1. https://attack.mitre.org/software/S1032
  2. https://research.checkpoint.com/2021/mosesstaff-targeting-israeli-companies/

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Software
DCSrv
Software
CypherPy
Software
Python
Software
PSCrypt
Software
Pysa
Software
Crypt32
Sourced from MITRE ATT&CK Enterprise 14.1. Curated by Adam Lundqvist, SQUR.