Downdelph

MITRE

Malware Type:
Other

First seen:
Unknown

Last seen:
Unknown

Details:

[Downdelph](https://attack.mitre.org/software/S0134) is a first-stage downloader written in Delphi that has been used by [APT28](https://attack.mitre.org/groups/G0007) in rare instances between 2013 and 2015. (Citation: ESET Sednit Part 3)

Associated Techniques (5)

ID	ATT&CK	Tactics
T1001.001	Junk Data	-
T1105	Ingress Tool Transfer	-
T1548.002	Bypass User Account Control	-
T1573.001	Symmetric Cryptography	-
T1574.001	DLL	-

Aliases (104)

Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy Delphacy

Used by Actors (1)

APT28
Nation-state

Metadata

ID:	31
Created:	13/01/2026 17:48
Updated:	06/03/2026 04:00