Register to stream ATT&CKcon 2.0 October 29-30

NetTraveler

NetTraveler is malware that has been used in multiple cyber espionage campaigns for basic surveillance of victims. The earliest known samples have timestamps back to 2005, and the largest number of observed samples were created between 2010 and 2013. [1]

ID: S0033
Type: MALWARE
Platforms: Windows
Version: 1.0

Techniques Used

Domain ID Name Use
Enterprise T1010 Application Window Discovery NetTraveler reports window names along with keylogger information to provide application context. [1]
Enterprise T1056 Input Capture NetTraveler contains a keylogger. [1]

Groups That Use This Software

ID Name References
G0062 TA459 [2]

References