🇵🇰

SideCopy

APT Group Information theft and espionage 7 zero-day CVEs ETDA ✓

Also Known As

No alias recorded

Target Countries 3

Countries highlighted in red

Hungary India United States

Sectors Targeted

National Security and International Affairs 9281 Advertising Agencies 54181 Data Processing, Hosting, and Related Services 51821 Computer Systems Design Services 541512 National Security and International Affairs 928110 Computer Systems Design and Related Services 54151

Details

Origin 🇵🇰 PK
Last Updated 01 Jun 2022

MITRE ATT&CK 90

T1001 T1005 - Data from Local System T1012 T1016 T1020 - Automated Exfiltration T1027 - Obfuscated Files or Information T1027.002 T1033 T1036 T1036.005 - Match Legitimate Name or Location T1041 T1047 - Windows Management Instrumentation T1053 T1053.003 - Cron T1055 - Process Injection T1055.001 T1056 T1057 T1059 - Command and Scripting Interpreter T1059.005 T1071 T1071.001 - Web Protocols T1074 T1078 T1082 - System Information Discovery T1083 T1090.002 - External Proxy T1102 T1104 T1105 - Ingress Tool Transfer T1106 - Native API T1112 T1113 T1115 T1119 T1124 T1125 T1127 T1129 - Shared Modules T1132 T1140 - Deobfuscate/Decode Files or Information T1170 T1185 T1189 T1203 T1204 T1204.001 - Malicious Link T1204.002 - Malicious File T1218 T1218.005 - Mshta T1221 T1222 T1480 T1486 T1518 T1518.001 T1546 T1547 T1547.001 - Registry Run Keys / Startup Folder T1547.013 - XDG Autostart Entries T1548.002 - Bypass User Account Control T1559 T1560 T1566 T1566.001 - Spearphishing Attachment T1566.002 - Spearphishing Link T1569 T1571 T1573 T1574 T1574.001 T1574.002 - DLL Side-Loading T1583 T1583.001 - Domains T1584 T1584.001 - Domains T1585.002 - Email Accounts T1586.002 - Email Accounts T1587 T1587.001 - Malware T1588 T1588.001 - Malware T1588.002 - Tool T1589.002 - Email Addresses T1598 T1598.002 T1608 T1608.001 - Upload Malware T1608.005 - Link Target T1614

Related Zero-Days 7

CVE-2017-0199 CVE-2019-2215 CVE-2021-44228 CVE-2023-38831 CVE-2023-46805 CVE-2024-21887 CVE-2024-21893