ADVSTORESHELL

MITRE

Malware Type:
Other

First seen:
Unknown

Last seen:
Unknown

Details:

[ADVSTORESHELL](https://attack.mitre.org/software/S0045) is a spying backdoor that has been used by [APT28](https://attack.mitre.org/groups/G0007) from at least 2012 to 2016. It is generally used for long-term espionage and is deployed on targets deemed interesting after a reconnaissance phase. (Citation: Kaspersky Sofacy) (Citation: ESET Sednit Part 2)

Associated Techniques (23)

ID	ATT&CK	Tactics
T1012	Query Registry	-
T1027	Obfuscated Files or Information	-
T1029	Scheduled Transfer	-
T1041	Exfiltration Over C2 Channel	-
T1056.001	Keylogging	-
T1057	Process Discovery	-
T1059.003	Windows Command Shell	-
T1070.004	File Deletion	-
T1071.001	Web Protocols	-
T1074.001	Local Data Staging	-
T1082	System Information Discovery	-
T1083	File and Directory Discovery	-
T1106	Native API	-
T1112	Modify Registry	-
T1120	Peripheral Device Discovery	-

Aliases (420)

AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco AZZY EVILTOSS NETUI Sedreco

Used by Actors (1)

APT28
Nation-state

Metadata

ID:	683
Created:	13/01/2026 17:48
Updated:	06/03/2026 16:00