Names | USBStealer | |
Category | Malware | |
Type | Info stealer | |
Description | USBStealer is malware that has used by APT28 since at least 2005 to extract information from air-gapped networks. It does not have the capability to communicate over the Internet and has been used in conjunction with Sedreco. | |
Information | <https://www.welivesecurity.com/2017/12/21/sednit-update-fancy-bear-spent-year/> | |
MITRE ATT&CK | <https://attack.mitre.org/software/S0136/> |
Last change to this tool card: 22 April 2020
Download this tool card in JSON format
Previous: USBferry
Next: USBWorm
Changed | Name | Country | Observed | ||
APT groups | |||||
![]() | Sofacy, APT 28, Fancy Bear, Sednit | ![]() | 2004-Nov 2020 ![]() | ![]() |
1 group listed (1 APT, 0 other, 0 unknown)
Thailand Computer Emergency Response Team (ThaiCERT) Follow us on![]() ![]() |
Report incidents |
|
![]() |
+66 (0)2-123-1234 | |
![]() |
report@thaicert.or.th | |
![]() |
Download PGP key |