PittyTiger

Overview

PittyTiger is a threat group believed to operate out of China that uses multiple different types of malware to maintain command and control.

Capabilities

• Custom malware/implant development — ATT&CK: 3 attributed custom malware families

TTPs — 2 techniques across 2 tactics

Tools & malware (5)

gh0st RAT · Lurid · gsecdump · PoisonIvy · Mimikatz

Reporting (2)

• Spy of the Tiger — Villeneuve, N., Homan, J
• Eye of the Tiger — Bizeul, D., Fontarensky, I., Mouchoux, R., Perigaud, F., Pernet, C