ELMER

MITRE

Malware Type:
Other

First seen:
Unknown

Last seen:
Unknown

Details:

[ELMER](https://attack.mitre.org/software/S0064) is a non-persistent, proxy-aware HTTP backdoor written in Delphi that has been used by [APT16](https://attack.mitre.org/groups/G0023). (Citation: FireEye EPS Awakens Part 2)

Associated Techniques (3)

ID	ATT&CK	Tactics
T1057	Process Discovery	-
T1071.001	Web Protocols	-
T1083	File and Directory Discovery	-

Used by Actors (1)

APT16
Nation-state

Metadata

ID:	156
Created:	13/01/2026 17:48
Updated:	06/03/2026 16:00