← threatfilter.dev / all groups / Strider
Strider
Also known as: ProjectSauron
Overview
Strider is a threat group that has been active since at least 2011 and has targeted victims in Russia, China, Sweden, Belgium, Iran, and Rwanda.
Targets
Government · Intelligence · Military
Regions
Belgium · China · Iran · Russia · Rwanda · Sweden
TTPs — 3 techniques across 3 tactics
Stealth
-
T1564.005Hidden File System
Defense Impairment
-
T1556.002Password Filter DLL
Command and Control
-
T1090.001Internal Proxy
Tools & malware (1)
Remsec
Reporting (3)
- The ProjectSauron APT — Kaspersky Lab's Global Research & Analysis Team
- ProjectSauron: top level cyber-espionage platform covertly extracts encrypted government comms — Kaspersky Lab's Global Research & Analysis Team
- Strider: Cyberespionage group turns eye of Sauron on targets — Symantec Security Response