Malware: WinMM

Description

[WinMM](https://attack.mitre.org/software/S0059) is a full-featured, simple backdoor used by [Naikon](https://attack.mitre.org/groups/G0019). (Citation: Baumgartner Naikon 2015)

External References

• mitre-attack
• Baumgartner Naikon 2015

Techniques Used by This Malware

• T1008 — Fallback Channels
• T1033 — System Owner/User Discovery
• T1057 — Process Discovery
• T1071.001 — Web Protocols
• T1082 — System Information Discovery
• T1083 — File and Directory Discovery

APT Groups Using This Malware

• Naikon