S1008 Stuxnet
Stuxnet was the first publicly reported piece of malware to specifically target industrial control systems devices. Stuxnet is a large and complex piece of malware that utilized multiple different complex tactics including multiple zero-day vulnerabilites, a sophisticated Windows rootkit, and network infection routines.12[^CISA ICS Advisory (ICSA-10-238-01B])4
| Item | Value |
|---|---|
| ID | S1008 |
| Associated Names | |
| Type | MALWARE |
| Version | 1.0 |
| Created | 26 March 2019 |
| Last Modified | 21 October 2021 |
| Navigation Layer | View In ATT&CK® Navigator |
Techniques Used
| Domain | ID | Name | Use |
|---|---|---|---|
References
-
Nicolas Falliere, Liam O Murchu, Eric Chien. (2011, February). W32.Stuxnet Dossier (Version 1.4). Retrieved September 22, 2017. ↩
-
Jarrad Shearer. (n.d.). W32.Stuxnet Writeup. Retrieved October 22, 2019. ↩
-
CISA. (2014, January 08). Stuxnet Malware Mitigation (Update B). Retrieved October 22, 2019. ↩
-
Joel Langill. (2014, January 21). Stuxnet Mitigation. Retrieved October 22, 2019. ↩
-
Ralph Langner. (2013, November). To Kill a Centrifuge: A Technical Analysis of What Stuxnet’s Creators Tried to Achieve. Retrieved March 27, 2018. ↩