cl0p
MITRE G0080Also known as TA505, Lace Tempest
Reports
3
First seen
Jul 7
Last seen
Dec 19
Motivation
financial, ransomware
Targeting
Sectors
technology ×1
Top ATT&CK techniques
T1190 Exploit Public-Facing Application ×3T1505.003 Web Shell ×2T1059.001 PowerShell ×2T1070.001 Clear Windows Event Logs ×1T1082 System Information Discovery ×1T1087 Account Discovery ×1T1041 Exfiltration Over C2 Channel ×1T1562.001 Disable or Modify Tools ×1T1135 Network Share Discovery ×1T1005 Data from Local System ×1T1105 Ingress Tool Transfer ×1T1059.003 Windows Command Shell ×1
Indicators
filename ×7cve ×5ip_v4 ×3url ×3hash_sha256 ×1
Indicator values are available on Pro and via the API.