Thrip

Overview

Thrip is an espionage group that has targeted satellite communications, telecoms, and defense contractor companies in the U.S. and Southeast Asia. The group uses custom malware as well as "living off the land" techniques.

Targets

Private sector

Regions

United States

TTPs — 4 techniques across 4 tactics

Tools & malware (3)

PsExec · Mimikatz · Catchamas

Reporting (1)

• Thrip: Espionage Group Hits Satellite, Telecoms, and Defense Companies — Security Response Attack Investigation Team