← Back to Actors
Tropic Trooper
Tropic TrooperPirate PandaKeyBoy
[Tropic Trooper](https://attack.mitre.org/groups/G0081) is an unaffiliated threat group that has led targeted campaigns against targets in Taiwan, the Philippines, and Hong Kong. [Tropic Trooper](https://attack.mitre.org/groups/G0081) focuses on targeting government, healthcare, transportation, and high-tech industries and has been active since 2011.(Citation: TrendMicro Tropic Trooper Mar 2018)(Citation: Unit 42 Tropic Trooper Nov 2016)(Citation: TrendMicro Tropic Trooper May 2020)
40
Techniques
39
Covered
1
Gaps
98%
Coverage
Coverage39/40
GAPS (1)
COVERED (39)
T1016System Network Configuration Discovery40 det.T1020Automated Exfiltration20 det.T1027.003Steganography5 det.T1027.013Encrypted/Encoded File8 det.T1033System Owner/User Discovery61 det.T1036.005Match Legitimate Resource Name or Location45 det.T1046Network Service Discovery51 det.T1049System Network Connections Discovery22 det.T1052.001Exfiltration over USB4 det.T1055.001Dynamic-link Library Injection13 det.T1057Process Discovery21 det.T1059.003Windows Command Shell83 det.T1070.004File Deletion43 det.T1071.001Web Protocols81 det.T1071.004DNS35 det.T1078.003Local Accounts23 det.T1082System Information Discovery86 det.T1083File and Directory Discovery48 det.T1091Replication Through Removable Media8 det.T1105Ingress Tool Transfer184 det.T1106Native API29 det.T1119Automated Collection12 det.T1132.001Standard Encoding5 det.T1135Network Share Discovery20 det.T1140Deobfuscate/Decode Files or Information58 det.T1203Exploitation for Client Execution79 det.T1204.002Malicious File441 det.T1221Template Injection1 det.T1505.003Web Shell65 det.T1518Software Discovery17 det.T1518.001Security Software Discovery10 det.T1543.003Windows Service79 det.T1547.001Registry Run Keys / Startup Folder53 det.T1547.004Winlogon Helper DLL4 det.T1564.001Hidden Files and Directories25 det.T1566.001Spearphishing Attachment979 det.T1573Encrypted Channel35 det.T1573.002Asymmetric Cryptography6 det.T1574.001DLL111 det.