Thrip

MISP

Tipo:
Nation-state

Paese:
Unknown

Prima attivita:
Unknown

Dettagli:

[Thrip](https://attack.mitre.org/groups/G0076) is an espionage group that has targeted satellite communications, telecoms, and defense contractor companies in the U.S. and Southeast Asia. The group uses custom malware as well as "living off the land" techniques. (Citation: Symantec Thrip June 2018)

MITRE ATT&CK: View on MITRE

Tecniche Utilizzate (4)

ID	ATT&CK	Tattiche
T1048.003	Exfiltration Over Unencrypted Non-C2 Protocol	-
T1059.001	PowerShell	-
T1219.002	Remote Desktop Software	-
T1588.002	Tool	-

Riferimenti (5)

Alias (398)

G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78 G0076 ATK78

Malware Utilizzato (3)

Catchamas
other

Mimikatz
tool

PsExec
tool

Metadata

ID:	177
Created:	13/01/2026 17:48
Updated:	23/04/2026 04:00