HyperStack

MITRE

Malware Type:
Other

First seen:
Unknown

Last seen:
Unknown

Details:

[HyperStack](https://attack.mitre.org/software/S0537) is a RPC-based backdoor used by [Turla](https://attack.mitre.org/groups/G0010) since at least 2018. [HyperStack](https://attack.mitre.org/software/S0537) has similarities to other backdoors used by [Turla](https://attack.mitre.org/groups/G0010) including [Carbon](https://attack.mitre.org/software/S0335).(Citation: Accenture HyperStack October 2020)

Associated Techniques (6)

ID	ATT&CK	Tactics
T1078.001	Default Accounts	-
T1087.001	Local Account	-
T1106	Native API	-
T1112	Modify Registry	-
T1559	Inter-Process Communication	-
T1573.001	Symmetric Cryptography	-

Used by Actors (1)

Turla
Nation-state

Metadata

ID:	115
Created:	13/01/2026 17:48
Updated:	06/03/2026 16:00