216.73.216.128

Pandora

The MITRE Corporation · Published 29/11/2021 20:53 · Modified 27/03/2026 01:05 Family

Essential information

Confidence
100/100
Is family
Yes
Published
29/11/2021 20:53
Modified
27/03/2026 01:05
Revoked
No
Author / Source
The MITRE Corporation
Related entities
20 attack patterns (mitre), 2 intrusion sets (apt), 4 sectors, 1 countries, 8 indicators, 2 vulnerabilities (cve)

Description

[Pandora](https://attack.mitre.org/software/S0664) is a multistage kernel rootkit with backdoor functionality that has been in use by [Threat Group-3390](https://attack.mitre.org/groups/G0027) since at least 2020.(Citation: Trend Micro Iron Tiger April 2021)

Marking (TLP)

TLP:CLEAR Copyright 2015-2025, The MITRE Corporation. MITRE ATT&CK and ATT&CK are registered trademarks of The MITRE Corporation.

External references