MischiefTut

Description

(Microsoft) MischiefTut is a custom backdoor implemented in PowerShell with a set of basic capabilities. MischiefTut can run reconnaissance commands, write outputs to a text file and, ostensibly, send outputs back to adversary-controlled infrastructure. MischiefTut can also be used to download additional tools on a compromised system.

Names

Name
MischiefTut

Category

Malware

Type

• Backdoor
• Reconnaissance
• Info stealer

Information

• https://www.microsoft.com/en-us/security/blog/2024/01/17/new-ttps-observed-in-mint-sandstorm-campaign-targeting-high-profile-individuals-at-universities-and-research-orgs/

Other Information

Uuid

08017bfa-6638-41c2-8aad-6608a9d7e86c

Last Card Change

2024-03-06