PROMETHIUM
MISP
Tipo:
Unknown
Unknown
Paese:
TR
TR
Prima attivita:
Unknown
Unknown
Dettagli:
PROMETHIUM is an activity group that has been active as early as 2012. The group primarily uses Truvasys, a first-stage malware that has been in circulation for several years. Truvasys has been involved in several attack campaigns, where it has masqueraded as one of server common computer utilities, including WinUtils, TrueCrypt, WinRAR, or SanDisk. In each of the campaigns, Truvasys malware evolved with additional features—this shows a close relationship between the activity groups behind the campaigns and the developers of the malware.
MITRE ATT&CK:
View on MITRE
Tecniche Utilizzate (11)
| ID | ATT&CK | Tattiche |
|---|---|---|
| T1036.004 | Masquerade Task or Service | - |
| T1036.005 | Match Legitimate Resource Name or Location | - |
| T1078.003 | Local Accounts | - |
| T1189 | Drive-by Compromise | - |
| T1204.002 | Malicious File | - |
| T1205.001 | Port Knocking | - |
| T1543.003 | Windows Service | - |
| T1547.001 | Registry Run Keys / Startup Folder | - |
| T1553.002 | Code Signing | - |
| T1587.002 | Code Signing Certificates | - |
| T1587.003 | Digital Certificates | - |
Alias (315)
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
StrongPity
StrongPity
G0056
Malware Utilizzato (2)
Metadata
| ID: | 92 |
| Created: | 13/01/2026 17:48 |
| Updated: | 07/03/2026 04:00 |