CSURFACE CSURFACE THREAT SENSOR
  • Home
  • Analytics
  • News
  • About
  • Tools
    • Constellation
  • Libraries
    • CWE
    • CAPEC
    • MITRE ATT&CK
    • MITRE D3FEND
    • OWASP Top 10
    • Ransomware Groups
    • References
  • Support
  • EN | PT
  1. Home
  2. Ransomware Groups
  3. TENGU

TENGU

RANSOMWARE

Confirmed CVEs (2)

Exploited by this group as confirmed by threat intelligence sources.

CVE-2025-55754 CRITICAL Apache Software Foundation Apache Tomcat 9.6 CVE-2024-38178 HIGH Microsoft Windows 11 Version 24H2 7.5

ATT&CK Techniques (10)

T1078 Valid Accounts Initial Access T1059.001 Command and Scripting Interpreter: PowerShell Execution T1059.003 Command and Scripting Interpreter: Windows Command Shell Execution T1053.005 Scheduled Task/Job: Scheduled Task Persistence T1070 Indicator Removal Defense Evasion T1218 System Binary Proxy Execution Defense Evasion T1021.001 Remote Services: Remote Desktop Protocol Lateral Movement T1041 Exfiltration Over C2 Channel Exfiltration T1486 Data Encrypted for Impact Impact T1490 Inhibit System Recovery Impact

Statistics

CVEs
2
TTPs
10
Tools
0

CSURFACE Threat Sensor — A CSURFACE project