Threat Group Cards: A Threat Actor Encyclopedia
Archived: 2026-04-05 17:59:23 UTC
Home > List all groups > List all tools > List all groups using tool Yasso
 Tool: Yasso
Names Yasso
Category Malware
Type Vulnerability scanner
Description
(Palo Alto) The emergence of a relatively new penetration testing tool set, Yasso, marked a
shift in the tactics employed by TGR-STA-0043. This tool set encompassed a range of
functionalities, including the following:
• Scanning
• Brute forcing
• Remote interactive shell capabilities
• Arbitrary command execution
What set Yasso apart was its unique feature set, incorporating powerful SQL penetration
functions and database capabilities. Until the time of this article, this had not been publicly
reported as being used in the wild by another threat actor.
Information Malpedia Last change to this tool card: 19 June 2024
Download this tool card in JSON format
All groups using tool Yasso
Changed Name Country Observed
APT groups
 Operation Diplomatic Specter 2022
https://apt.etda.or.th/cgi-bin/listgroups.cgi?u=e81dcaa1-8cf8-4f16-9446-67447a7f55a7
Page 1 of 2

1 group listed (1 APT, 0 other, 0 unknown)
Source: https://apt.etda.or.th/cgi-bin/listgroups.cgi?u=e81dcaa1-8cf8-4f16-9446-67447a7f55a7
https://apt.etda.or.th/cgi-bin/listgroups.cgi?u=e81dcaa1-8cf8-4f16-9446-67447a7f55a7
Page 2 of 2