APT Profile: Agrius

Aliases: Agrius, Pink Sandstorm, AMERICIUM, Agonizing Serpens, BlackShadow

Description

[Agrius](https://attack.mitre.org/groups/G1030) is an Iranian threat actor active since 2020 notable for a series of ransomware and wiper operations in the Middle East, with an emphasis on Israeli targets.(Citation: SentinelOne Agrius 2021)(Citation: CheckPoint Agrius 2023) Public reporting has linked [Agrius](https://attack.mitre.org/groups/G1030) to Iran's Ministry of Intelligence and Security (MOIS).(Citation: Microsoft Iran Cyber 2023)

Techniques Used (TTPs)

Total TTPs: 22

Malware & Tools

← Return to Home ← Back to APT Search