Check out the results from our first round of ATT&CK Evaluations at attackevals.mitre.org!

HALFBAKED

HALFBAKED is a malware family consisting of multiple components intended to establish persistence in victim networks. [1]

ID: S0151
Aliases: HALFBAKED
Type: MALWARE
Platforms: Windows

Version: 1.0

Techniques Used

DomainIDNameUse
EnterpriseT1107File DeletionHALFBAKED can delete a specified file.[1]
EnterpriseT1086PowerShellHALFBAKED can execute PowerShell scripts.[1]
EnterpriseT1057Process DiscoveryHALFBAKED can obtain information about running processes on the victim.[1]
EnterpriseT1113Screen CaptureHALFBAKED can obtain screenshots from the victim.[1]
EnterpriseT1082System Information DiscoveryHALFBAKED can obtain information about the OS, processor, and BIOS.[1]
EnterpriseT1047Windows Management InstrumentationHALFBAKED can use WMI queries to gather system information.[1]

Groups

Groups that use this software:

FIN7

References