TAMECAT (Deprecated) (8d00b893-7492-4a67-a9b0-d817c5a21603)
We are no longer maintaining this object in favor of a similar object subsequently published by MITRE: "TAMECAT" (Software). All relevant Tidal content extensions (e.g. additional Technique and Object relationships and metadata) have been added to the MITRE-authored object.
TAMECAT is a custom backdoor developed and used by Iranian espionage group APT42. It is usually delivered via phishing attacks and serves as a post-compromise command execution and malware ingress capability.[Mandiant Uncharmed May 1 2024]
| Cluster A | Galaxy A | Cluster B | Galaxy B | Level |
|---|---|---|---|---|
| APT42 (Deprecated) (ce126445-6984-45bb-9737-35448f06f27b) | Tidal Groups | TAMECAT (Deprecated) (8d00b893-7492-4a67-a9b0-d817c5a21603) | Tidal Software | 1 |