Hikit

Hikit is malware that has been used by Axiom for late-stage persistence and exfiltration after the initial compromise. [1]

ID: S0009
Type: MALWARE
Platforms: Windows

Version: 1.0

Techniques Used

DomainIDNameUse
EnterpriseT1090Connection ProxyHikit supports peer connections.[1]
EnterpriseT1024Custom Cryptographic ProtocolHikit performs XOR encryption.[1]

Groups

Groups that use this software:

Axiom

References