PULSECHECK

MITRE

Malware Type:
Other

First seen:
Unknown

Last seen:
Unknown

Details:

[PULSECHECK](https://attack.mitre.org/software/S1108) is a web shell written in Perl that was used by [APT5](https://attack.mitre.org/groups/G1023) as early as 2020 including against Pulse Secure VPNs at US Defense Industrial Base (DIB) companies.(Citation: Mandiant Pulse Secure Zero-Day April 2021)

Associated Techniques (4)

ID	ATT&CK	Tactics
T1059.004	Unix Shell	-
T1071.001	Web Protocols	-
T1132.001	Standard Encoding	-
T1505.003	Web Shell	-

Used by Actors (1)

APT5
Unknown

Metadata

ID:	440
Created:	13/01/2026 17:48
Updated:	06/03/2026 16:00