Clankerusecase
Threat-actor profile
 ← Back to main site
Home/ Threat Actors/ SilverTerrier

🌐SilverTerrier

🌐 SilverTerrier is a tracked threat actor in the Clankerusecase corpus. ??-aligned. Primary motivation: Unknown. We map 12 detection use cases to this actor across 4 MITRE ATT&CK techniques, with 0 threat-intel articles citing them.

View full actor card → All threat actors MITRE ATT&CK group spec (G0083) ↗
12Use cases
0Articles
4Techniques
0IOCs

About this actor (MITRE)

[SilverTerrier](https://attack.mitre.org/groups/G0083) is a Nigerian threat group that has been seen active since 2014. [SilverTerrier](https://attack.mitre.org/groups/G0083) mainly targets organizations in high technology, higher education, and manufacturing.(Citation: Unit42 SilverTerrier 2018)(Citation: Unit42 SilverTerrier 2016)

Known aliases

SilverTerrier

Top techniques

T1071.001 · Web ProtocolsT1071.002 · File Transfer ProtocolsT1071.003 · Mail Protocols

All other tracked techniques

T1657 · Financial Theft

Detection use cases (12)

SilverTerrier infostealer SMTP/FTP exfil from non-mail process (Agent Tesla / LokiBot / HawkEye / AzoRult) AI · profile SΣ SilverTerrier BEC mailbox-rule manipulation hiding finance reply threads (T1657 financial-theft preparation) AI · profile S Brand-Impersonation Domain Fetch Followed by User-Context Loader Within 10 Minutes MITRE match Internet-facing service process spawns shell/LOLBin within minutes of public inbound connection — post-RCE command execution MITRE match Non-Browser Process Reads Browser Credential / Cookie SQLite Then Egresses to Public Destination Within 10 Minutes MITRE match Package Manager / Dev-Tool Auto-Execution Triggers Non-Registry Egress or Credential-Store Access MITRE match Server / AI-agent process spawns shell or LOLBIN with public egress — post-RCE behavioural chain MITRE match Beaconing — periodic outbound to small set of destinations MITRE match Detect Outbound SMB Traffic MITRE match Windows File Transfer Protocol In Non-Common Process Path MITRE match Windows Mail Protocol In Non-Common Process Path MITRE match Windows Multi hop Proxy TOR Website Query MITRE match