G0061

FIN8FIN8

Also known as: ATK113 · G0061 · FIN8

Known aliases
3

Profile

FIN8 is a financially motivated group targeting the retail, hospitality and entertainment industries. The actor had previously conducted several tailored spearphishing campaigns using the downloader PUNCHBUGGY and POS malware PUNCHTRACK.

Aliases· 3

ATK113FIN8
G0061

MITRE ATT&CK Group crosswalk

G0061

References

  1. https://www.fireeye.com/blog/threat-research/2016/05/windows-zero-day-payment-cards.html
  2. https://www2.fireeye.com/WBNR-Know-Your-Enemy-UNC622-Spear-Phishing.html
  3. https://www.root9b.com/sites/default/files/whitepapers/PoS%20Malware%20ShellTea%20PoSlurp.pdf
  4. https://afyonluoglu.org/PublicWebFiles/Reports-TR/2017%20FireEye%20M-Trends%20Report.pdf
  5. https://www.fireeye.com/blog/threat-research/2017/06/obfuscation-in-the-wild.html
  6. https://attack.mitre.org/groups/G0061

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Actor
FIN5
Actor
FIN6
Group
FIN7
Software
PUNCHBUGGY
Actor
FIN11
Actor
FIN1
Sourced from MISP-Galaxy Threat Actor cluster. Curated by Adam Lundqvist, Founder at SQUR.