ETDA สำนักงานพัฒนาธุรกรรมทางอิเล็กทรอนิกส์
Electronic Transactions Development Agency
Report
Search
Home > List all groups > List all tools > List all groups using tool certutil

Threat Group Cards: A Threat Actor Encyclopedia

Permanent link Tool: certutil

Namescertutil
certutil.exe
CategoryTools
Descriptioncertutil is a command-line utility that can be used to obtain certificate authority information and configure Certificate Services.
Information<https://www.bleepingcomputer.com/news/security/certutilexe-could-allow-attackers-to-download-malware-while-bypassing-av/>
MITRE ATT&CK<https://attack.mitre.org/software/S0160/>

Last change to this tool card: 30 December 2022

Download this tool card in JSON format

Previous: Cerberus
Next: CetaRAT

All groups using tool certutil

ChangedNameCountryObserved

APT groups

XAPT 41China2012-Aug 2024 HOTX
XGhostEmperorChina2020-Sep 2024 HOT 
XOilRig, APT 34, Helix Kitten, ChryseneIran2014-Sep 2024 HOTX
 Pinchy Spider, Gold SouthfieldRussia2018-May 2024X
 RancorChina2017 
XSofacy, APT 28, Fancy Bear, SednitRussia2004-Sep 2024 HOTX
XStone Panda, APT 10, menuPassChina2006-Feb 2022X
 Turla, Waterbug, Venomous BearRussia1996-Dec 2023 
 UNC215China2019 

9 groups listed (9 APT, 0 other, 0 unknown)

Digital Service Security Center
Electronic Transactions Development Agency

Follow us on

Facebook Twitter

Report incidents

Telephone +66 (0)2-123-1227
E-mail [email protected]