S0664Windows

S0664Pandora

Platforms
1
ATT&CK
14.1
References
2

Description

[Pandora](https://attack.mitre.org/software/S0664) is a multistage kernel rootkit with backdoor functionality that has been in use by [Threat Group-3390](https://attack.mitre.org/groups/G0027) since at least 2020.(Citation: Trend Micro Iron Tiger April 2021) Documented platforms: Windows. Attributed to ATT&CK group: Threat Group-3390. Catalogued in ATT&CK 14.1. 2 references curated.

Platforms· 1

Windows

Attributed to1

TypeTargetConfidenceTier
GroupThreat Group-3390g002795%live

References

  1. https://attack.mitre.org/software/S0664
  2. https://www.trendmicro.com/en_us/research/21/d/iron-tiger-apt-updates-toolkit-with-evolved-sysupdate-malware-va.html

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Software
SysUpdate
Software
Clambling
Software
RCSession
Software
4H RAT
Software
PS1
Software
ThreatNeedle
Sourced from MITRE ATT&CK Enterprise 14.1. Curated by Adam Lundqvist, SQUR.