Gallmaker

Techniques (MITRE ATT&CK)6

SourceMITRE ATT&CK

Vexday analysis

Gallmaker é um grupo de ciberespionagem ativo pelo menos desde dezembro de 2017, com atuação direcionada a vítimas no Oriente Médio, com foco nos setores de defesa, forças armadas e governo. O grupo está catalogado no MITRE ATT&CK sob o identificador G0084, com 6 técnicas documentadas associadas às suas operações.

Techniques (MITRE ATT&CK) 6

How the group operates, mapped to the MITRE ATT&CK matrix and organized by the phases of an attack.

Initial access

Spearphishing Attachment

Execution

PowerShell Malicious File Dynamic Data Exchange

Collection

Archive via Utility

stealth

Obfuscated Files or Information

Exploited vulnerabilities

No CVEs attributed to this group in public sources (MITRE ATT&CK). Absence of attribution does not mean absence of activity.

Gallmaker uses real techniques and exploits real flaws. TrueHacking's AI Autonomous Pentest simulates these attacks against your infrastructure and brings more security to your application.

Explore the AI Autonomous Pentest →