Leafminer

Also known as: Leafminer, Raspite, LeafMiner, RASPITE

Leafminer is an Iranian threat group that has targeted government organizations and business entities in the Middle East since at least early 2017. Symantec Leafminer July 2018

🧭 ATT&CK G0077

Electric

Introduction

Leafminer is an Iranian threat group that has targeted government organizations and business entities in the Middle East since at least early 2017. Symantec Leafminer July 2018

Activities and Tactics

Targeted Sectors: Electric

Notable Campaigns

Information pending cataloguing.

Tactics, Techniques, and Procedures (TTPs)

Information pending cataloguing.

Notable Indicators of Compromise (IOCs)

No curated IOCs are currently published for this actor. This section will be updated when stable, attributable indicators are available.

Malware and Tools

Information pending cataloguing.

Attribution and Evidence

Information pending cataloguing.

References

[1] MITRE ATT&CK MITRE ATT&CK entry [2] Symantec Leafminer July 2018

Source Attribution

Structured source: Malpedia (Fraunhofer FKIE)

View ATT&CK group profile

View upstream source record

License: CC BY-NC-SA 3.0

Additional source provenance

malpedia Source record Dataset
mitre Dataset

Source and license policy

🔍 Quick Filters

Top Countries

Risk Distribution

High

161

Critical

Low

Medium

Introduction

Activities and Tactics

Notable Campaigns

Tactics, Techniques, and Procedures (TTPs)

Notable Indicators of Compromise (IOCs)

Malware and Tools

Attribution and Evidence

References

Clickable IOC Blocks