JUST RELEASED: ATT&CK for Industrial Control Systems

BS2005

BS2005 is malware that was used by Ke3chang in spearphishing campaigns since at least 2011. [1]

ID: S0014
Type: MALWARE
Platforms: Windows
Version: 1.0
Created: 31 May 2017
Last Modified: 17 October 2018

Techniques Used

Domain ID Name Use
Enterprise T1132 Data Encoding

BS2005 uses Base64 encoding for communication in the message body of an HTTP request.[1]

References