🇮🇷

AjaxTM

APT Group Information theft and espionage ETDA ✓

Also Known As 7 names

Flying Kitten Ajax Security Team AjaxSecurityTeam Group 26 Saffron Rose SaffronRose Sayad

Target Countries 1

Countries highlighted in red

United States

Sectors Targeted

Defense dissidents

Details

Origin 🇮🇷 IR
Last Updated 03 Apr 2025

MITRE ATT&CK 27

T1018 - Remote System Discovery T1021 - Remote Services T1040 - Network Sniffing T1045 - Software Packing T1053 - Scheduled Task/Job T1055 - Process Injection T1056 T1056.001 - Keylogging T1057 - Process Discovery T1060 - Registry Run Keys / Startup Folder T1071 - Application Layer Protocol T1082 - System Information Discovery T1105 - Ingress Tool Transfer T1112 - Modify Registry T1119 - Automated Collection T1129 - Shared Modules T1133 - External Remote Services T1143 - Hidden Window T1204 - User Execution T1204.002 - Malicious File T1480 - Execution Guardrails T1553 - Subvert Trust Controls T1555 T1555.003 - Credentials from Web Browsers T1566 T1566.001 - Spearphishing Attachment T1566.003 - Spearphishing via Service

Related Zero-Days

No zero-day CVE linked to this actor