SampleCheck5000
MITRE
Malware Type:
Other
Other
First seen:
Unknown
Unknown
Last seen:
Unknown
Unknown
Details:
[SampleCheck5000](https://attack.mitre.org/software/S1168) is a downloader with multiple variants that was used by [OilRig](https://attack.mitre.org/groups/G0049) including during the [Outer Space](https://attack.mitre.org/campaigns/C0042) campaign to download and execute additional payloads. (Citation: ESET OilRig Campaigns Sep 2023)(Citation: ESET OilRig Downloaders DEC 2023)
Associated Techniques (10)
| ID | ATT&CK | Tactics |
|---|---|---|
| T1059.003 | Windows Command Shell | - |
| T1071.001 | Web Protocols | - |
| T1074.001 | Local Data Staging | - |
| T1082 | System Information Discovery | - |
| T1102.002 | Bidirectional Communication | - |
| T1105 | Ingress Tool Transfer | - |
| T1140 | Deobfuscate/Decode Files or Information | - |
| T1560.001 | Archive via Utility | - |
| T1567 | Exfiltration Over Web Service | - |
| T1680 | Local Storage Discovery | - |
Aliases (105)
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
SC5k
Used by Actors (1)
Metadata
| ID: | 475 |
| Created: | 13/01/2026 17:48 |
| Updated: | 06/03/2026 16:00 |