NetTraveler

NetTraveler is malware that has been used in multiple cyber espionage campaigns for basic surveillance of victims. The earliest known samples have timestamps back to 2005, and the largest number of observed samples were created between 2010 and 2013. [1]

ID: S0033
Aliases: NetTraveler
Type: MALWARE
Platforms: Windows

Version: 1.0

Techniques Used

DomainIDNameUse
EnterpriseT1010Application Window DiscoveryNetTraveler reports window names along with keylogger information to provide application context.[1]
EnterpriseT1056Input CaptureNetTraveler contains a keylogger.[1]

Groups

Groups that use this software:

TA459

References