Threat Group Cards: A Threat Actor Encyclopedia
Archived: 2026-04-05 16:32:49 UTC
Home > List all groups > List all tools > List all groups using tool Seasalt
 Tool: Seasalt
Names Seasalt
Category Malware
Type Reconnaissance, Backdoor, Info stealer, Exfiltration
Description
The SEASALT malware family communicates via a custom binary protocol. It is
capable of gathering some basic system information, file system manipulation, file
upload and download, process creation and termination, and spawning an interactive
reverse shell. The malware maintains persistence by installing itself as a service.
Information
MITRE ATT&CK Malpedia AlienVault OTX Last change to this tool card: 23 April 2020
Download this tool card in JSON format
All groups using tool Seasalt
Changed Name Country Observed
APT groups
 Comment Crew, APT 1 2006-May 2018
1 group listed (1 APT, 0 other, 0 unknown)
https://apt.etda.or.th/cgi-bin/listgroups.cgi?u=24120d91-700f-4c79-a354-67675ca35f9a
Page 1 of 2

Source: https://apt.etda.or.th/cgi-bin/listgroups.cgi?u=24120d91-700f-4c79-a354-67675ca35f9a
https://apt.etda.or.th/cgi-bin/listgroups.cgi?u=24120d91-700f-4c79-a354-67675ca35f9a
Page 2 of 2