Pteranodon
MITRE
Malware Type:
Other
Other
First seen:
Unknown
Unknown
Last seen:
Unknown
Unknown
Details:
[Pteranodon](https://attack.mitre.org/software/S0147) is a custom backdoor used by [Gamaredon Group](https://attack.mitre.org/groups/G0047). (Citation: Palo Alto Gamaredon Feb 2017)
Associated Techniques (17)
| ID | ATT&CK | Tactics |
|---|---|---|
| T1027.007 | Dynamic API Resolution | - |
| T1041 | Exfiltration Over C2 Channel | - |
| T1053.005 | Scheduled Task | - |
| T1059.003 | Windows Command Shell | - |
| T1059.005 | Visual Basic | - |
| T1070.004 | File Deletion | - |
| T1071.001 | Web Protocols | - |
| T1074.001 | Local Data Staging | - |
| T1083 | File and Directory Discovery | - |
| T1105 | Ingress Tool Transfer | - |
| T1106 | Native API | - |
| T1113 | Screen Capture | - |
| T1140 | Deobfuscate/Decode Files or Information | - |
| T1218.005 | Mshta | - |
| T1218.011 | Rundll32 | - |
Aliases (105)
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Pterodo
Used by Actors (1)
Metadata
| ID: | 280 |
| Created: | 13/01/2026 17:48 |
| Updated: | 06/03/2026 16:00 |