NEW: Group Profiler — instant APT intel lookup. Try it →

← threatfilter.dev / all groups / FIN4

FIN4

Overview

FIN4 is a financially-motivated threat group that has targeted confidential information related to the public financial market, particularly regarding healthcare and pharmaceutical companies, since at least 2013. FIN4 is unique in that they do not infect victims with typical persistent malware, but rather they focus on capturing credentials authorized to access email and other non-public correspondence.

Targets

Finance · Healthcare · Pharmacy

TTPs — 12 techniques across 5 tactics

Initial Access

Execution

Stealth

Collection

Command and Control

Reporting (3)