Triton malware fork
AlienVault
· Published 19/02/2026 19:12 · Modified 19/02/2026 19:13
Essential information
- Confidence
- 100/100
- Is family
- No
- Published
- 19/02/2026 19:12
- Modified
- 19/02/2026 19:13
- Revoked
- No
- Author / Source
- AlienVault
- Related entities
- 10 attack patterns (mitre), 4 indicators, 1 reports
Description
No description.
Marking (TLP)
TLP:CLEAR
Related entities
Attack patterns, malware, vulnerabilities, indicators, intrusion sets and other entities linked to this malware.
Attack patterns (MITRE) (10)
-
T1012 usesQuery Registry MITRE
-
T1057 usesProcess Discovery MITRE
-
T1573 usesEncrypted Channel MITRE
-
T1059 usesCommand and Scripting Interpreter MITRE
-
T1090 usesProxy MITRE
-
T1497 usesVirtualization/Sandbox Evasion MITRE
-
T1140 usesDeobfuscate/Decode Files or Information MITRE
-
T1562 usesImpair Defenses MITRE
-
T1082 usesSystem Information Discovery MITRE
-
T1071 usesApplication Layer Protocol MITRE
Indicators (4)
-
stix 100/100· Valid until 15/02/2027 · Source: AlienVault
-
stix 100/100 Revoked· Valid until 20/03/2026 · Source: AlienVault
Reports (1)
-
7 MITREs 1 Malware 3 Observables