Winnti Group

MITRE

Tipo:
Unknown

Paese:
Unknown

Prima attivita:
Unknown

Dettagli:

[Winnti Group](https://attack.mitre.org/groups/G0044) is a threat group with Chinese origins that has been active since at least 2010. The group has heavily targeted the gaming industry, but it has also expanded the scope of its targeting.(Citation: Kaspersky Winnti April 2013)(Citation: Kaspersky Winnti June 2015)(Citation: Novetta Winnti April 2015) Some reporting suggests a number of other groups, including [Axiom](https://attack.mitre.org/groups/G0001), [APT17](https://attack.mitre.org/groups/G0025), and [Ke3chang](https://attack.mitre.org/groups/G0004), are closely linked to [Winnti Group](https://attack.mitre.org/groups/G0044).(Citation: 401 TRG Winnti Umbrella May 2018)

MITRE ATT&CK: View on MITRE

Tecniche Utilizzate (6)

ID	ATT&CK	Tattiche
T1014	Rootkit	-
T1057	Process Discovery	-
T1083	File and Directory Discovery	-
T1105	Ingress Tool Transfer	-
T1553.002	Code Signing	-
T1583.001	Domains	-

Alias (196)

Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly Blackfly

Malware Utilizzato (3)

PipeMon
other

PlugX
other

Winnti for Windows
other

Metadata

ID:	904
Created:	13/01/2026 17:48
Updated:	21/04/2026 16:00