AuditCred

MITRE

Malware Type:
Other

First seen:
Unknown

Last seen:
Unknown

Details:

[AuditCred](https://attack.mitre.org/software/S0347) is a malicious DLL that has been used by [Lazarus Group](https://attack.mitre.org/groups/G0032) during their 2018 attacks.(Citation: TrendMicro Lazarus Nov 2018)

Associated Techniques (9)

ID	ATT&CK	Tactics
T1027.013	Encrypted/Encoded File	-
T1055	Process Injection	-
T1059.003	Windows Command Shell	-
T1070.004	File Deletion	-
T1083	File and Directory Discovery	-
T1090	Proxy	-
T1105	Ingress Tool Transfer	-
T1140	Deobfuscate/Decode Files or Information	-
T1543.003	Windows Service	-

Aliases (105)

Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer Roptimizer

Used by Actors (1)

Lazarus Group
Nation-state

Metadata

ID:	93
Created:	13/01/2026 17:48
Updated:	06/03/2026 16:00