Suckfly | APT Profile

Description

[Suckfly](https://attack.mitre.org/groups/G0039) is a China-based threat group that has been active since at least 2014. (Citation: Symantec Suckfly March 2016)

Techniques Used (TTPs)

T1059.003 — Windows Command Shell (execution)
T1078 — Valid Accounts (defense-evasion, persistence, privilege-escalation, initial-access)
T1046 — Network Service Discovery (discovery)
T1003 — OS Credential Dumping (credential-access)
T1553.002 — Code Signing (defense-evasion)

Total TTPs: 5

Malware & Tools

Malware: Nidiran

← Return to Home ← Back to APT Search