ESET has analyzed the operations of Evilnum, the APT group behind the Evilnum malware previously seen in attacks against financial technology companie...

Threat Actor Profile

Evilnum

Uses 18 known MITRE ATT&CK techniques.

18 TTPs Mapped Real-Time Alerts

Actor Overview

Known Techniques
18 TTPs

MITRE ATT&CK Techniques

T1204T1204.001T1497T1548T1548.002T1059T1059.007T1555T1574T1574.001T1070T1070.004T1105T1566T1566.002 +3 more

Related Threat Reports

Premium
APT Campaign Analysis - Q4 2025Dec 2025
New Tactics Observed in WildDec 2025
Infrastructure Mapping ReportDec 2025
Stay Updated

Get alerts when new intel on Evilnum is published.

Actor Details

Primary Name
Evilnum
Known Aliases
DeathStalker, TA4563, EvilNum, Jointworm, KNOCKOUT SPIDER
Data Source
Precursor Intelligence
Need API Access?

Integrate threat actor data into your SIEM or SOAR.

View Plans →