APT Profile: Cleaver

Aliases: Cleaver, Threat Group 2889, TG-2889

Description

[Cleaver](https://attack.mitre.org/groups/G0003) is a threat group that has been attributed to Iranian actors and is responsible for activity tracked as Operation Cleaver. (Citation: Cylance Cleaver) Strong circumstantial evidence suggests Cleaver is linked to Threat Group 2889 (TG-2889). (Citation: Dell Threat Group 2889)

Techniques Used (TTPs)

Total TTPs: 5

Malware & Tools

Malware: Net Crawler, TinyZBot

Tools: Mimikatz, PsExec

← Return to Home ← Back to APT Search