NEW: Group Profiler — instant APT intel lookup. Try it →

← threatfilter.dev / all groups / FIN13

FIN13

Also known as: Elephant Beetle

Overview

FIN13 is a financially motivated cyber threat group that has targeted the financial, retail, and hospitality industries in Mexico and Latin America, as early as 2016. FIN13 achieves its objectives by stealing intellectual property, financial data, mergers and acquisition information, or PII.

Capabilities

  • Exploitation of public-facing / client applications — ATT&CK T1190

TTPs — 53 techniques across 13 tactics

Reconnaissance

Resource Development

Initial Access

Execution

Defense Impairment

Credential Access

Lateral Movement

Collection

Command and Control

Impact

Tools & malware (4)

Impacket · Mimikatz · Empire · certutil

Reporting (2)