S0125Windows

S0125Remsec

Platforms
1
ATT&CK
14.1
References
3

Description

[Remsec](https://attack.mitre.org/software/S0125) is a modular backdoor that has been used by [Strider](https://attack.mitre.org/groups/G0041) and appears to have been designed primarily for espionage purposes. Many of its modules are written in Lua. (Citation: Symantec Strider Blog) Documented platforms: Windows. Attributed to ATT&CK group: Strider. Catalogued in ATT&CK 14.1. 3 references curated.

Platforms· 1

Windows

Attributed to1

TypeTargetConfidenceTier
GroupStriderg004195%live

References

  1. https://attack.mitre.org/software/S0125
  2. https://securelist.com/faq-the-projectsauron-apt/75533/
  3. http://www.symantec.com/connect/blogs/strider-cyberespionage-group-turns-eye-sauron-targets

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Software
Remcos
Software
Remexi
Software
Mosquito
Software
Felismus
Software
POSHSPY
Software
RemoteCMD
Sourced from MITRE ATT&CK Enterprise 14.1. Curated by Adam Lundqvist, SQUR.