Names | ASPXSpy | |
Category | Malware | |
Type | Backdoor | |
Description | ASPXSpy is a Web shell. It has been modified by Threat Group-3390 actors to create the ASPXTool version. | |
Information | <https://www.secureworks.com/research/threat-group-3390-targets-organizations-for-cyberespionage> <https://github.com/ysrc/webshell-sample/blob/master/aspx/a91320483df0178eb3cafea830c1bd94585fc896.aspx> | |
MITRE ATT&CK | <https://attack.mitre.org/software/S0073/> | |
AlienVault OTX | <https://otx.alienvault.com/browse/pulses?q=tag:AspxSpy> |
Last change to this tool card: 22 April 2020
Download this tool card in JSON format
Changed | Name | Country | Observed | ||
APT groups | |||||
Agrius | ![]() | 2020 | |||
APT 41 | ![]() | 2012-Aug 2021 | ![]() | ||
Chafer, APT 39 | ![]() | 2014-Sep 2020 | ![]() | ||
Emissary Panda, APT 27, LuckyMouse, Bronze Union | ![]() | 2010-Mar 2021 | |||
Night Dragon | ![]() | 2009 | |||
TaskMasters | ![]() | 2010-May 2021 | |||
Turla, Waterbug, Venomous Bear | ![]() | 1996-Apr 2022 ![]() | |||
Volatile Cedar | ![]() | 2012-Early 2020 |
8 groups listed (8 APT, 0 other, 0 unknown)
Digital Service Security Center Follow us on![]() ![]() |
Report incidents |
|
![]() |
+66 (0)2-123-1227 | |
![]() |
[email protected] |