Threat Group Cards: A Threat Actor Encyclopedia
Archived: 2026-04-05 16:15:38 UTC
Home > List all groups > List all tools > List all groups using tool StickyFingers
 Tool: StickyFingers
Names
StickyFingers
QUICKBALL
Category Malware
Type Backdoor
Description
Sticky Fingers, also known as QUICKBALL, is a simple DLL backdoor that is used by China-based advanced persistent threat actors to gain reverse shell access to infected systems. It has
been observed in the healthcare, high-tech, consulting, manufacturing, energy and utilities,
telecommunications, aerospace, education, and legal services industries.
Information
Last change to this tool card: 20 April 2020
Download this tool card in JSON format
All groups using tool StickyFingers
Changed Name Country Observed
APT groups
 APT 18, Dynamite Panda, Wekby 2009-May 2016
1 group listed (1 APT, 0 other, 0 unknown)
Source: https://apt.etda.or.th/cgi-bin/listgroups.cgi?u=c437e980-e7ca-4b60-a52f-00b92d5b1f8b
https://apt.etda.or.th/cgi-bin/listgroups.cgi?u=c437e980-e7ca-4b60-a52f-00b92d5b1f8b
Page 1 of 1