TA2727

APT Group

Also Known As

No alias recorded

Target Countries 5

Countries highlighted in red

Canada France United Kingdom Ukraine United States

Sectors Targeted

various U.S. companies supporting Ukraine Construction of Buildings 236 NAICS:44 44 Other Information Services 519 Civil Engineering Multiple All Educational Services 61 Construction 23 Educational Support Services 6117 Accommodation and Food Services 72 Information 51

Details

Origin Global

Last Updated 14 May 2025

Malware Families 4

exobot

hunter

deltastealer

osx.frigid_stealer

MITRE ATT&CK 11

T1027 - Obfuscated Files or Information T1041 - Exfiltration Over CC Channel T1189 - Drive by Compromise T1204.002 - Malicious File T1555 - Credentials from Password Stores T1566.002 - Spearphishing Link TA0001 - Initial Access TA0002 - Execution TA0005 - Defense Evasion TA0006 - Credential Access TA0010 - Exfiltration

Related Zero-Days

No zero-day CVE linked to this actor