Skip to content

Hide Navigation Hide TOC

TAMECAT (Deprecated) (8d00b893-7492-4a67-a9b0-d817c5a21603)

We are no longer maintaining this object in favor of a similar object subsequently published by MITRE: "TAMECAT" (Software). All relevant Tidal content extensions (e.g. additional Technique and Object relationships and metadata) have been added to the MITRE-authored object.

TAMECAT is a custom backdoor developed and used by Iranian espionage group APT42. It is usually delivered via phishing attacks and serves as a post-compromise command execution and malware ingress capability.[Mandiant Uncharmed May 1 2024]

Cluster A Galaxy A Cluster B Galaxy B Level
APT42 (Deprecated) (ce126445-6984-45bb-9737-35448f06f27b) Tidal Groups TAMECAT (Deprecated) (8d00b893-7492-4a67-a9b0-d817c5a21603) Tidal Software 1