MOPSLED

MITRE

Tipo Malware:
Other

Prima attivita:
Unknown

Ultima attivita:
Unknown

Dettagli:

[MOPSLED](https://attack.mitre.org/software/S1221) is a shellcode-based modular backdoor that has been used by China-nexus cyber espionage actors including [UNC3886](https://attack.mitre.org/groups/G1048) and [APT41](https://attack.mitre.org/groups/G0096).(Citation: Google Cloud Mandiant UNC3886 2024)

Tecniche Associate (6)

ID	ATT&CK	Tattiche
T1027.013	Encrypted/Encoded File	-
T1071.001	Web Protocols	-
T1095	Non-Application Layer Protocol	-
T1102	Web Service	-
T1102.001	Dead Drop Resolver	-
T1140	Deobfuscate/Decode Files or Information	-

Usato da Attori (2)

APT41
Nation-state

UNC3886
Unknown

Metadata

ID:	538
Created:	13/01/2026 17:48
Updated:	21/04/2026 04:00