Names | Wingbird | |
Category | Malware | |
Type | Backdoor, Info stealer | |
Description | Wingbird is a backdoor that appears to be a version of commercial software FinFisher. It is reportedly used to attack individual computers instead of networks. It was used by NEODYMIUM in a May 2016 campaign. | |
MITRE ATT&CK | <https://attack.mitre.org/software/S0176/> |
Last change to this tool card: 22 April 2020
Download this tool card in JSON format
Changed | Name | Country | Observed | ||
APT groups | |||||
BlackOasis | [Middle East] | 2015-Oct 2017 | |||
Neodymium | ![]() | 2016 |
2 groups listed (2 APT, 0 other, 0 unknown)
Thailand Computer Emergency Response Team (ThaiCERT) Follow us on![]() ![]() |
Report incidents |
|
![]() |
+66 (0)2-123-1234 | |
![]() |
report@thaicert.or.th | |
![]() |
Download PGP key |