JUST RELEASED: ATT&CK for Industrial Control Systems


SEASHARPEE is a Web shell that has been used by APT34. [1]

ID: S0185
Platforms: Windows
Version: 1.0
Created: 16 January 2018
Last Modified: 17 October 2018

Techniques Used

Domain ID Name Use
Enterprise T1059 Command-Line Interface

SEASHARPEE can execute commands on victims.[1]

Enterprise T1105 Remote File Copy

SEASHARPEE can download remote files onto victims.[1]

Enterprise T1099 Timestomp

SEASHARPEE can timestomp files on victims using a Web shell.[1]

Enterprise T1100 Web Shell

SEASHARPEE is a Web shell.[1]

Groups That Use This Software

ID Name References
G0049 OilRig [1]