Sowbug

Techniques (MITRE ATT&CK)9

SourceMITRE ATT&CK

Vexday analysis

Sowbug é um grupo de ameaça persistente avançada (APT) identificado no MITRE ATT&CK como G0054, conhecido por conduzir ataques direcionados contra organizações na América do Sul e no Sudeste Asiático, com foco particular em entidades governamentais, desde pelo menos 2015. O grupo possui 9 técnicas documentadas na base ATT&CK.

Techniques (MITRE ATT&CK) 9

How the group operates, mapped to the MITRE ATT&CK matrix and organized by the phases of an attack.

Execution

Windows Command Shell

Credential access

OS Credential Dumping

Discovery

System Information Discovery File and Directory Discovery Network Share Discovery

Collection

Data from Network Shared Drive Keylogging Archive via Utility

stealth

Match Legitimate Resource Name or Location

Exploited vulnerabilities

No CVEs attributed to this group in public sources (MITRE ATT&CK). Absence of attribution does not mean absence of activity.

Sowbug uses real techniques and exploits real flaws. TrueHacking's AI Autonomous Pentest simulates these attacks against your infrastructure and brings more security to your application.

Explore the AI Autonomous Pentest →