Question 1

What is S0171 — Felismus?

Accepted Answer

[Felismus](https://attack.mitre.org/software/S0171) is a modular backdoor that has been used by [Sowbug](https://attack.mitre.org/groups/G0054). (Citation: Symantec Sowbug Nov 2017) (Citation: Forcepoint Felismus Mar 2017) Documented platforms: Windows. Attributed to ATT&CK group: Sowbug.

Question 2

What is the authoritative source for S0171?

Accepted Answer

Felismus (S0171) is catalogued in MITRE ATT&CK Enterprise and curated for EU compliance use cases by SQUR.

S0171Felismus

Description

Platforms· 1

References

Related by meaning· 6