TA459 | APT Profile

Description

[TA459](https://attack.mitre.org/groups/G0062) is a threat group believed to operate out of China that has targeted countries including Russia, Belarus, Mongolia, and others. (Citation: Proofpoint TA459 April 2017)

Techniques Used (TTPs)

T1566.001 — Spearphishing Attachment (initial-access)
T1203 — Exploitation for Client Execution (execution)
T1059.005 — Visual Basic (execution)
T1204.002 — Malicious File (execution)
T1059.001 — PowerShell (execution)

Total TTPs: 5

Malware & Tools

Malware: NetTraveler, PlugX, ZeroT, gh0st RAT

← Return to Home ← Back to APT Search