Bitter APT Group
· Published 21/12/2025 06:28 · Modified 21/12/2025 06:28
· Source: AlienVault
Essential information
- Confidence
- 100/100
- Published
- 21/12/2025 06:28
- Modified
- 21/12/2025 06:28
- Updated at
- 21/12/2025 06:28
- Revoked
- No
- Author / Source
- AlienVault
- Resource level
- —
- Primary motivation
- —
- Related entities
- 1 reports, 10 attack patterns (mitre), 9 malware, 79 indicators
Description
No description.
Marking (TLP)
TLP:CLEAR
Related entities
Attack patterns, malware, vulnerabilities, indicators and other entities linked to this intrusion set.
Reports (1)
-
10 MITREs 9 Malwares 82 Observables 1 APT
Attack patterns (MITRE) (10)
-
T1059 usesCommand and Scripting Interpreter MITRE
-
T1562 usesImpair Defenses MITRE
-
T1583 usesAcquire Infrastructure MITRE
-
T1135 usesNetwork Share Discovery MITRE
-
T1588 usesObtain Capabilities MITRE
-
T1083 usesFile and Directory Discovery MITRE
-
T1071 usesApplication Layer Protocol MITRE
-
T1113 usesScreen Capture MITRE
-
T1566 usesPhishing MITRE
-
T1005 usesData from Local System MITRE
Malware (9)
-
sstn.exe usesFamily
-
stom.jpg usesFamily
-
schs.exe usesFamily
-
OLMAPI32.dll usesFamily
-
sparrow.jpg usesFamily
-
Figlio.exe usesFamily
-
SearchApp.jpg usesFamily
-
ORPCBackdoor usesFamily
-
scm.exe usesFamily
Indicators (79)
-
3bd8d3d9fd594a37cc8cb9838e528ca6d9acd2f6bbe4e95ff51d9f35fdde2e13indicates -
3d3f42e0e9c0c1db2089fb87ab34f366b8ac192e0acdd0ae2e190b96fa9578d0indicates -
f7352581613aeb9d6ce6f21814b72d389377201eeceac3b58e9d1ba6469e69dcindicates -
4827c3d73576bce406e89cf07aa671e1937efb89b012460b1831ac1c07574c59indicates -
b087a214fb40e9f8e7b21a8f36cabd53fee32f79a01d05d31476e249b6f472caindicates -
1c089e89b341ce7d506e6d5c60e7efcaccb068c20dbfc6f23995563ad1eb28e9indicates -
700827a157a3c3ddd1a4ac80b98d4519d937f240ec9046d1e9c3a480024c8ccdindicates -
evtessentials.comindicates -
d3cfd8ff93a2d7662081a5cb521c10f56d2bcee9e68d51d986b4a5496a3827c3indicates -
2a4cd85fc8f0bd5b399cd0cea6bc0cdea3174e1608fd5679860be8e2a78a8903indicates -
94cd0c50f1cd9cd0e5e137e765dc8306793624a94584415ad71473eeed98401findicates -
microsoft.officeweb.liveindicates