216.73.217.172

Apostle

The MITRE Corporation · Published 22/05/2024 21:16 · Modified 27/03/2026 01:03 Family

Essential information

Confidence
100/100
Is family
Yes
Published
22/05/2024 21:16
Modified
27/03/2026 01:03
Revoked
No
Author / Source
The MITRE Corporation
Related entities
33 attack patterns (mitre), 1 intrusion sets (apt), 3 sectors, 54 indicators

Description

[Apostle](https://attack.mitre.org/software/S1133) is malware that has functioned as both a wiper and, in more recent versions, as ransomware. [Apostle](https://attack.mitre.org/software/S1133) is written in .NET and shares various programming and functional overlaps with [IPsec Helper](https://attack.mitre.org/software/S1132).(Citation: SentinelOne Agrius 2021)

Marking (TLP)

TLP:CLEAR Copyright 2015-2025, The MITRE Corporation. MITRE ATT&CK and ATT&CK are registered trademarks of The MITRE Corporation.

External references