SEASHARPEE

SEASHARPEE is a Web shell that has been used by APT34. [1]

ID: S0185
Type: MALWARE
Platforms: Windows
Version: 1.0

Techniques Used

Domain ID Name Use
Enterprise T1059 Command-Line Interface SEASHARPEE can execute commands on victims.[1]
Enterprise T1105 Remote File Copy SEASHARPEE can download remote files onto victims.[1]
Enterprise T1099 Timestomp SEASHARPEE can timestomp files on victims using a Web shell.[1]
Enterprise T1100 Web Shell SEASHARPEE is a Web shell.[1]

Groups

Groups that use this software:

OilRig

References