Strider

Also known as: ProjectSauron, Strider, Sauron, Project Sauron, G0041

Strider is a threat group that has been active since at least 2011 and has targeted victims in Russia, China, Sweden, Belgium, Iran, and Rwanda. Symantec Strider Blog Kaspersky ProjectSauron Blog

🌍 Country United States

🎯 Incident Type Espionage

🧭 ATT&CK G0041

Intelligence Government Military

Targeted Victims

Russia Iran Belgium China Sweden Rwanda

Introduction

Strider is a threat group that has been active since at least 2011 and has targeted victims in Russia, China, Sweden, Belgium, Iran, and Rwanda. Symantec Strider Blog Kaspersky ProjectSauron Blog

Activities and Tactics

Targeted Sectors: Intelligence, Government, Military

Country of Origin: 🇺🇸 United States

Incident Type: Espionage

Suspected Victims: Russia, Iran, Belgium, China, Sweden, Rwanda

Notable Campaigns

Information pending cataloguing.

Tactics, Techniques, and Procedures (TTPs)

Information pending cataloguing.

Notable Indicators of Compromise (IOCs)

No curated IOCs are currently published for this actor. This section will be updated when stable, attributable indicators are available.

Malware and Tools

Information pending cataloguing.

Attribution and Evidence

Country of Origin: United States Additional attribution information pending cataloguing.

References

[1] MITRE ATT&CK MITRE ATT&CK entry [2] Symantec Strider Blog [3] Kaspersky ProjectSauron Blog

Source Attribution

Structured source: Malpedia (Fraunhofer FKIE)

View ATT&CK group profile

View upstream source record

License: CC BY-NC-SA 3.0

Additional source provenance

malpedia Source record Dataset
mitre Dataset

Source and license policy

🔍 Quick Filters

Top Countries

Risk Distribution

High

161

Critical

Low

Medium

Targeted Victims

Introduction

Activities and Tactics

Notable Campaigns

Tactics, Techniques, and Procedures (TTPs)

Notable Indicators of Compromise (IOCs)

Malware and Tools

Attribution and Evidence

References

Clickable IOC Blocks