S1081Windows

S1081BADHATCH

Platforms
1
ATT&CK
14.1
References
3

Description

[BADHATCH](https://attack.mitre.org/software/S1081) is a backdoor that has been utilized by [FIN8](https://attack.mitre.org/groups/G0061) since at least 2019. [BADHATCH](https://attack.mitre.org/software/S1081) has been used to target the insurance, retail, technology, and chemical industries in the United States, Canada, South Africa, Panama, and Italy.(Citation: Gigamon BADHATCH Jul 2019)(Citation: BitDefender BADHATCH Mar 2021)

Platforms· 1

Windows

Attributed to1

TypeTargetConfidenceTier
GroupFIN8g006195%live

References

  1. https://attack.mitre.org/software/S1081
  2. https://blog.gigamon.com/2019/07/23/abadbabe-8badf00d-discovering-badhatch-and-a-detailed-look-at-fin8s-tooling/
  3. https://www.bitdefender.com/files/News/CaseStudies/study/394/Bitdefender-PR-Whitepaper-BADHATCH-creat5237-en-EN.pdf

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Software
Sardonic
Software
Disco
Software
Chinoxy
Software
Shark
Software
MacMa
Group
FIN8
Sourced from MITRE ATT&CK Enterprise 14.1. Curated by Adam Lundqvist, SQUR.