PowerLess

MITRE

Malware Type:
Other

First seen:
Unknown

Last seen:
Unknown

Details:

[PowerLess](https://attack.mitre.org/software/S1012) is a PowerShell-based modular backdoor that has been used by [Magic Hound](https://attack.mitre.org/groups/G0059) since at least 2022.(Citation: Cybereason PowerLess February 2022)

Associated Techniques (9)

ID	ATT&CK	Tactics
T1005	Data from Local System	-
T1056.001	Keylogging	-
T1059.001	PowerShell	-
T1074.001	Local Data Staging	-
T1105	Ingress Tool Transfer	-
T1140	Deobfuscate/Decode Files or Information	-
T1217	Browser Information Discovery	-
T1560	Archive Collected Data	-
T1573	Encrypted Channel	-

Used by Actors (1)

Magic Hound
Unknown

Metadata

ID:	141
Created:	13/01/2026 17:48
Updated:	06/03/2026 16:00