S1052Windows

S1052DEADEYE

Platforms
1
ATT&CK
14.1
References
2

Description

[DEADEYE](https://attack.mitre.org/software/S1052) is a malware launcher that has been used by [APT41](https://attack.mitre.org/groups/G0096) since at least May 2021. [DEADEYE](https://attack.mitre.org/software/S1052) has variants that can either embed a payload inside a compiled binary (DEADEYE.EMBED) or append it to the end of a file (DEADEYE.APPEND).(Citation: Mandiant APT41)

Platforms· 1

Windows

Attributed to1

TypeTargetConfidenceTier
GroupAPT41g009695%live

References

  1. https://attack.mitre.org/software/S1052
  2. https://www.mandiant.com/resources/apt41-us-state-governments

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Software
KEYPLUG
Software
Industroyer2
Software
StreamEx
Software
Denis
Software
Zebrocy
Software
Bumblebee
Sourced from MITRE ATT&CK Enterprise 14.1. Curated by Adam Lundqvist, SQUR.