Check out the results from our first round of ATT&CK Evaluations at attackevals.mitre.org!

HDoor

HDoor is malware that has been customized and used by the Naikon group. [1]

ID: S0061
Aliases: HDoor, Custom HDoor
Type: MALWARE
Platforms: Windows

Version: 1.0

Techniques Used

DomainIDNameUse
EnterpriseT1089Disabling Security ToolsHDoor kills anti-virus found on the victim.[1]
EnterpriseT1046Network Service ScanningHDoor scans to identify open ports on the victim.[1]

Groups

Groups that use this software:

Naikon

References