IronWind

MITRE

Malware Type:
Other

First seen:
Unknown

Last seen:
Unknown

Details:

[IronWind](https://attack.mitre.org/software/S9029) is a custom loader malware that has been in use since at least 2023 by actors including [WIRTE](https://attack.mitre.org/groups/G0090) to target entities in the Middle East.(Citation: Check Point Wirte NOV 2024)

Associated Techniques (9)

ID	ATT&CK	Tactics
T1027.010	Command Obfuscation	-
T1033	System Owner/User Discovery	-
T1059.003	Windows Command Shell	-
T1070	Indicator Removal	-
T1071.001	Web Protocols	-
T1082	System Information Discovery	-
T1140	Deobfuscate/Decode Files or Information	-
T1518	Software Discovery	-
T1574.001	DLL	-

Used by Actors (1)

WIRTE
Unknown

Metadata

ID:	164097
Created:	28/04/2026 16:00
Updated:	10/05/2026 16:00