G0055

NEODYMIUMNEODYMIUM

Also known as: G0055 · NEODYMIUM

Known aliases
2

Profile

NEODYMIUM is an activity group that is known to use a backdoor malware detected by Microsoft as Wingbird. This backdoor’s characteristics closely match FinFisher, a government-grade commercial surveillance package. Data about Wingbird activity indicate that it is typically used to attack individual computers instead of networks.

Aliases· 2

NEODYMIUM
G0055

MITRE ATT&CK Group crosswalk

G0055

References

  1. https://blogs.technet.microsoft.com/mmpc/2016/12/14/twin-zero-day-attacks-promethium-and-neodymium-target-individuals-in-europe/
  2. https://attack.mitre.org/groups/G0055/

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Software
Wingbird
Group
PROMETHIUM
Actor
Budminer
Software
Naid
Actor
BlackOasis
Actor
TERBIUM
Sourced from MISP-Galaxy Threat Actor cluster. Curated by Adam Lundqvist, Founder at SQUR.