Peppy | Malware Detail

Description

[Peppy](https://attack.mitre.org/software/S0643) is a Python-based remote access Trojan, active since at least 2012, with similarities to [Crimson](https://attack.mitre.org/software/S0115).(Citation: Proofpoint Operation Transparent Tribe March 2016)

External References

mitre-attack
Proofpoint Operation Transparent Tribe March 2016

Techniques Used by This Malware

T1020 — Automated Exfiltration
T1056.001 — Keylogging
T1059.003 — Windows Command Shell
T1071.001 — Web Protocols
T1083 — File and Directory Discovery
T1105 — Ingress Tool Transfer
T1113 — Screen Capture

APT Groups Using This Malware

Transparent Tribe