ThaiCERT    ETDA    MDES
Report
Search
Home > List all groups > List all tools > List all groups using tool Meterpreter

Threat Group Cards: A Threat Actor Encyclopedia

Permanent link Tool: Meterpreter

NamesMeterpreter
CategoryTools
TypeLoader
DescriptionMeterpreter is an advanced, dynamically extensible payload that uses in-memory DLL injection stagers and is extended over the network at runtime. It communicates over the Metasploit Stager socket and provides a comprehensive client-side Ruby API. It features command history, tab completion, channels, and more.

Meterpreter was originally written by skape for Metasploit 2.x, common extensions were merged for 3.x and is currently undergoing an overhaul for Metasploit 3.3. The server portion is implemented in plain C and is now compiled with MSVC, making it somewhat portable. The client can be written in any language but Metasploit has a full-featured Ruby client API.
Information<https://github.com/r00t-3xp10it/meterpeter>
<https://www.offensive-security.com/metasploit-unleashed/about-meterpreter/>
AlienVault OTX<https://otx.alienvault.com/browse/pulses?q=tag:Meterpreter>

Last change to this tool card: 21 April 2020

Download this tool card in JSON format

All groups using tool Meterpreter

ChangedNameCountryObserved

APT groups

 APT 41China2012-Aug 2020 HOTX
 FIN6, Skeleton Spider[Unknown]2015-Mar 2020 
 FIN7Russia2013-May 2020X
 FIN11[Unknown]2016-Oct 2020 HOT 
 GCMANRussia2016 
 MuddyWater, Seedworm, TEMP.Zagros, Static KittenIran2017-Oct 2020 HOTX
 Silence, Contract Crew[Unknown]2016-Jan 2020 
 Turla, Waterbug, Venomous BearRussia1996-Jun 2020 

8 groups listed (8 APT, 0 other, 0 unknown)

Thailand Computer Emergency Response Team (ThaiCERT)
Electronic Transactions Development Agency

Follow us on

Facebook Twitter

Report incidents

Telephone +66 (0)2-123-1234
E-mail report@thaicert.or.th
PGP Download PGP key