T1073: T1073
Essential information
- MITRE technique ID
T1073- Confidence
- 100/100
- Revoked
- No
- Published
- 20/12/2025 21:03
- Modified
- 27/05/2026 21:40
- Author / Source
- AlienVault
Description
No description.
Marking (TLP)
TLP:CLEAR
External references
Related entities
Intrusion sets, malware, reports, vulnerabilities, indicators and other entities linked to this technique.
Intrusion sets (APT) (12)
-
Unknown usesAlienVault Confidence 100First seen 01/01/1970 · Last seen 16/11/5138 ·
-
Redfly usesAlienVault Confidence 100First seen 01/01/1970 · Last seen 16/11/5138 ·
-
ToddyCat usesThe MITRE Corporation Confidence 100
[ToddyCat](https://attack.mitre.org/groups/G1022) is a sophisticated threat group that has been active since at least 2020 using custom loaders and malware in multi-stage infection chains against government and military targets…
First seen 01/01/1970 · Last seen 16/11/5138 · -
Bloody Wolf usesAlienVault Confidence 100First seen 01/01/1970 · Last seen 16/11/5138 ·
-
Metador usesThe MITRE Corporation Confidence 100
[Metador](https://attack.mitre.org/groups/G1013) is a suspected cyber espionage group that was first reported in September 2022. [Metador](https://attack.mitre.org/groups/G1013) has targeted a limited number of telecommunication companies, internet service providers, and universities…
First seen 01/01/1970 · Last seen 16/11/5138 · -
The MITRE Corporation Confidence 100
[APT-C-36](https://attack.mitre.org/groups/G0099) is a suspected South America espionage group that has been active since at least 2018. The group mainly targets Colombian government institutions as well as important corporations…
First seen 01/01/1970 · Last seen 16/11/5138 · -
CloudWizard usesAlienVault Confidence 100First seen 01/01/1970 · Last seen 16/11/5138 ·
-
Grayling usesAlienVault Confidence 100First seen 01/01/1970 · Last seen 16/11/5138 ·
-
APT-C-53 (Gamaredon) usesAlienVault Confidence 100First seen 01/01/1970 · Last seen 16/11/5138 ·
-
The MITRE Corporation Confidence 100
[Mustang Panda](https://attack.mitre.org/groups/G0129) is a China-based cyber espionage threat actor that has been conducting operations since at least 2012. [Mustang Panda](https://attack.mitre.org/groups/G0129) has been known to use tailored phishing lures…
First seen 01/01/1970 · Last seen 16/11/5138 · -
TA551 Shathak usesAlienVault Confidence 100First seen 01/01/1970 · Last seen 16/11/5138 ·
-
The MITRE Corporation Confidence 100
[Tonto Team](https://attack.mitre.org/groups/G0131) is a suspected Chinese state-sponsored cyber espionage threat group that has primarily targeted South Korea, Japan, Taiwan, and the United States since at least 2009; by…
First seen 01/01/1970 · Last seen 16/11/5138 ·
Malware (22)
-
LockBit usesFamily
-
Cobalt Strike usesFamily
-
Trojan:Win32/Amadey usesFamily
-
MidgeDropper uses
-
HackTool:MSIL/Ninja uses
-
Noodlophile usesFamily
-
X_Trader uses
-
Family
-
Matanbuchus usesFamily
-
Bisonal uses
-
NetSupport usesFamily
-
Samurai uses
Reports (5)
-
5 MITREs 1 Malware 28 Observables
-
5 MITREs
-
12 MITREs 6 Observables 1 APT
-
16 MITREs 2 Malwares 10 Observables 1 APT
-
15 MITREs 3 Malwares 36 Observables 1 APT