Shark

MITRE

Tipo Malware:
Other

Prima attivita:
Unknown

Ultima attivita:
Unknown

Dettagli:

[Shark](https://attack.mitre.org/software/S1019) is a backdoor malware written in C# and .NET that is an updated version of [Milan](https://attack.mitre.org/software/S1015); it has been used by [HEXANE](https://attack.mitre.org/groups/G1001) since at least July 2021.(Citation: ClearSky Siamesekitten August 2021)(Citation: Accenture Lyceum Targets November 2021)

Tecniche Associate (17)

ID	ATT&CK	Tattiche
T1005	Data from Local System	-
T1008	Fallback Channels	-
T1012	Query Registry	-
T1027.013	Encrypted/Encoded File	-
T1029	Scheduled Transfer	-
T1036.005	Match Legitimate Resource Name or Location	-
T1041	Exfiltration Over C2 Channel	-
T1059.003	Windows Command Shell	-
T1070.004	File Deletion	-
T1071.001	Web Protocols	-
T1071.004	DNS	-
T1074	Data Staged	-
T1082	System Information Discovery	-
T1105	Ingress Tool Transfer	-
T1140	Deobfuscate/Decode Files or Information	-

Usato da Attori (1)

HEXANE
Unknown

Metadata

ID:	438
Created:	13/01/2026 17:48
Updated:	06/03/2026 16:00