Exaramel for Windows

MITRE

Malware Type:
Other

First seen:
Unknown

Last seen:
Unknown

Details:

[Exaramel for Windows](https://attack.mitre.org/software/S0343) is a backdoor used for targeting Windows systems. The Linux version is tracked separately under [Exaramel for Linux](https://attack.mitre.org/software/S0401).(Citation: ESET TeleBots Oct 2018)

Associated Techniques (8)

ID	ATT&CK	Tactics
T1027.011	Fileless Storage	-
T1036.004	Masquerade Task or Service	-
T1059.003	Windows Command Shell	-
T1059.005	Visual Basic	-
T1074.001	Local Data Staging	-
T1112	Modify Registry	-
T1543.003	Windows Service	-
T1560	Archive Collected Data	-

Used by Actors (1)

Sandworm Team
Unknown

Metadata

ID:	18
Created:	13/01/2026 17:48
Updated:	06/03/2026 16:00