Threat Group Cards: A Threat Actor Encyclopedia
Archived: 2026-04-05 22:19:56 UTC
Home > List all groups > List all tools > List all groups using tool SHARPEXT
 Tool: SHARPEXT
Names SHARPEXT
Category Malware
Type Backdoor, Info stealer, Exfiltration
Description
(Volexity) SHARPEXT is a malicious browser extension deployed by SharpTongue following
successful compromise of a target system. In the first versions of SHARPEXT investigated by
Volexity, the malware only supported Google Chrome. The latest version (3.0 based on the
internal versioning) supports three browsers.
Information
Last change to this tool card: 12 September 2022
Download this tool card in JSON format
All groups using tool SHARPEXT
Changed Name Country Observed
APT groups
 Kimsuky, Velvet Chollima 2012-Aug 2025
1 group listed (1 APT, 0 other, 0 unknown)
Source: https://apt.etda.or.th/cgi-bin/listgroups.cgi?u=a513cdce-3e92-47f9-80f4-bf955cb3a5da
https://apt.etda.or.th/cgi-bin/listgroups.cgi?u=a513cdce-3e92-47f9-80f4-bf955cb3a5da
Page 1 of 1