T1115: T1115
Essential information
- MITRE technique ID
T1115- Confidence
- 100/100
- Revoked
- No
- Published
- 31/05/2017 23:31
- Modified
- 27/03/2026 01:09
- Author / Source
- The MITRE Corporation
Aliases
Clipboard Data
Platforms
windows macos linux
Description
Kill chain phases
| Kill chain | Phase |
|---|---|
| mitre-attack | collection |
Marking (TLP)
TLP:CLEAR Copyright 2015-2025, The MITRE Corporation. MITRE ATT&CK and ATT&CK are registered trademarks of The MITRE Corporation.
External references
Related entities
Intrusion sets, malware, reports, vulnerabilities, indicators and other entities linked to this technique.
Intrusion sets (APT) (50)
-
North Korea relatedAlienVault Confidence 100First seen 01/01/1970 · Last seen 16/11/5138 ·
-
The MITRE Corporation Confidence 100
[OilRig](https://attack.mitre.org/groups/G0049) is a suspected Iranian threat group that has targeted Middle Eastern and international victims since at least 2014. The group has targeted a variety of sectors, including…
First seen 01/01/1970 · Last seen 16/11/5138 · -
Player_Bunny relatedAlienVault Confidence 100First seen 01/01/1970 · Last seen 16/11/5138 ·
-
RastaFarEye relatedAlienVault Confidence 100First seen 01/01/1970 · Last seen 16/11/5138 ·
-
RedLineCyber relatedAlienVault Confidence 100First seen 01/01/1970 · Last seen 16/11/5138 ·
-
SHADOW-WATER-063 relatedAlienVault Confidence 100First seen 01/01/1970 · Last seen 16/11/5138 ·
-
Sordeal Group relatedAlienVault Confidence 100First seen 01/01/1970 · Last seen 16/11/5138 ·
-
Stealit relatedAlienVault Confidence 100First seen 01/01/1970 · Last seen 16/11/5138 ·
-
TEMP.Hermit relatedAlienVault Confidence 100First seen 01/01/1970 · Last seen 16/11/5138 ·
-
The MITRE Corporation Confidence 100
[Transparent Tribe](https://attack.mitre.org/groups/G0134) is a suspected Pakistan-based threat group that has been active since at least 2013, primarily targeting diplomatic, defense, and research organizations in India and Afghanistan.(Citation: Proofpoint…
First seen 01/01/1970 · Last seen 16/11/5138 · -
UAC-0020 (Vermin) relatedAlienVault Confidence 100First seen 01/01/1970 · Last seen 16/11/5138 ·
-
Void Arachne relatedAlienVault Confidence 100First seen 01/01/1970 · Last seen 16/11/5138 ·
Malware (84)
-
GodRAT usesAlienVault Confidence 100First seen 01/01/1970 · Last seen 16/11/5138 ·
-
KarstoRAT usesAlienVault Confidence 100First seen 01/01/1970 · Last seen 16/11/5138 ·
-
SnappyClient usesAlienVault Confidence 100First seen 01/01/1970 · Last seen 16/11/5138 ·
-
SPECTR usesAlienVault Confidence 100First seen 01/01/1970 · Last seen 16/11/5138 ·
-
Astaroth - S0373 usesAlienVault Confidence 100First seen 01/01/1970 · Last seen 16/11/5138 ·
-
RedLine Stealer usesFamily The MITRE Corporation Confidence 100
[RedLine Stealer](https://attack.mitre.org/software/S1240) is an information-stealer malware variant first identified in 2020.(Citation: ESET RedLine Stealer November 2024)(Citation: Proofpoint RedLine Stealer March 2020)(Citation: Splunk RedLine Stealer June 2023) [RedLine Stealer](https://attack.mitre.org/software/S1240)…
First seen 01/01/1970 · Last seen 16/11/5138 · -
DeepCreep usesAlienVault Confidence 100First seen 01/01/1970 · Last seen 16/11/5138 ·
-
Clipminer usesAlienVault Confidence 100First seen 01/01/1970 · Last seen 16/11/5138 ·
-
Danabot usesAlienVault Confidence 100First seen 01/01/1970 · Last seen 16/11/5138 ·
-
AsyncRAT usesAlienVault Confidence 100First seen 01/01/1970 · Last seen 16/11/5138 ·
-
Odyssey usesAlienVault Confidence 100First seen 01/01/1970 · Last seen 16/11/5138 ·
-
FakeCrack usesAlienVault Confidence 100First seen 01/01/1970 · Last seen 16/11/5138 ·
Reports (50)
-
17 MITREs 3 Malwares 1 Observable
-
19 MITREs 4 Malwares 1 APT
-
Uncovering a Web3 Interview Scam related12 MITREs 2 Malwares
-
15 MITREs 1 Malware
-
17 MITREs 2 Malwares 26 Observables 1 APT
-
15 MITREs 2 Malwares 134 Observables 1 APT
-
16 MITREs 1 Malware 16 Observables 1 APT
-
16 MITREs 18 Observables 1 APT
-
33 MITREs 1 Observable
-
20 MITREs 3 Malwares 35 Observables
-
5 MITREs 5 Malwares 23 Observables 1 APT
-
14 MITREs 2 Malwares 86 Observables 1 APT
Vulnerabilities (CVE) (15)
WebRTC, an open-source project providing web browsers with real-time communication, contains a heap buffer overflow vulnerability that allows an attacker to perform …
- Published
- 25/08/2022
- Modified
- 20/12/2025
A vulnerability in the VPN web server of Cisco Secure Firewall Adaptive Security Appliance (ASA) Software and Cisco Secure Firewall Threat Defense …
- Attack vector
- Network
- Published
- 25/09/2025
- Modified
- 21/12/2025
A memory corruption issue was addressed with improved validation. This issue is fixed in iOS 14.4.1 and iPadOS 14.4.1, Safari 14.0.3 (v. …
- Attack vector
- NETWORK
- Published
- 02/04/2021
- Modified
- 21/12/2025