S0161macOS

S0161XAgentOSX

Platforms
1
ATT&CK
14.1
References
3

Description

[XAgentOSX](https://attack.mitre.org/software/S0161) is a trojan that has been used by [APT28](https://attack.mitre.org/groups/G0007) on OS X and appears to be a port of their standard [CHOPSTICK](https://attack.mitre.org/software/S0023) or XAgent trojan. (Citation: XAgentOSX 2017) Documented platforms: macOS. Attributed to ATT&CK group: APT28. Catalogued in ATT&CK 14.1. 3 references curated.

Platforms· 1

macOS

Attributed to1

TypeTargetConfidenceTier
GroupAPT28g000795%live

References

  1. https://attack.mitre.org/software/S0161
  2. https://researchcenter.paloaltonetworks.com/2017/02/unit42-xagentosx-sofacys-xagent-macos-tool/
  3. https://www.symantec.com/blogs/election-security/apt28-espionage-military-government

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Software
Komplex
Software
X-Agent
Software
XCSSET
Software
CHOPSTICK
Software
OSX/Shlayer
Software
iKitten
Sourced from MITRE ATT&CK Enterprise 14.1. Curated by Adam Lundqvist, SQUR.