Threat Group Cards: A Threat Actor Encyclopedia
Archived: 2026-04-05 15:35:35 UTC
Home > List all groups > List all tools > List all groups using tool Separ
 Tool: Separ
Names Separ
Category Malware
Type Info stealer
Description
(Kaspersky) What sets this stealer apart is its use of a simply but tricky technique dubbed
“Living off the Land.” Hackers have used this popular tactic in the past to launch attacks based
on legitimate files which are either common within the organization attacked, or are widely-used administrative tools. The legit files can be abused to perform malicious functions.
For Separ, that means using very short script and batch files, as well as legitimate executables,
to carry out all of its malicious business logic.
Information Last change to this tool card: 20 April 2020
Download this tool card in JSON format
All groups using tool Separ
Changed Name Country Observed
APT groups
 Gangnam Industrial Style [Unknown] 2019
1 group listed (1 APT, 0 other, 0 unknown)
Source: https://apt.etda.or.th/cgi-bin/listgroups.cgi?u=897e0110-84da-445a-af6d-429a4d18cf97
https://apt.etda.or.th/cgi-bin/listgroups.cgi?u=897e0110-84da-445a-af6d-429a4d18cf97
Page 1 of 1