GCMAN

GCMAN is a threat group that focuses on targeting banks for the purpose of transferring money to e-currency services. [1]

ID: G0036
Version: 1.0

Techniques Used

Domain ID Name Use
Enterprise T1021 Remote Services

GCMAN uses Putty and VNC for lateral movement.[1]

References