LoJax (039f34e9-f379-4a24-a53f-b28ba579854c)
LoJax is a UEFI rootkit used by APT28 to persist remote access software on targeted systems.[ESET LoJax Sept 2018]
| Cluster A | Galaxy A | Cluster B | Galaxy B | Level |
|---|---|---|---|---|
| LoJax (039f34e9-f379-4a24-a53f-b28ba579854c) | Tidal Software | APT28 (5b1a5b9e-4722-41fc-a15d-196a549e3ac5) | Tidal Groups | 1 |