Machete
Aliases: APT-C-43, El Machete
Machete is a suspected Spanish-speaking cyber espionage group that has been active since at least 2010. It has primarily focused its operations within Latin America, with a particular emphasis on Venezuela, but also in the US, Europe, Russia, and parts of Asia. Machete generally targets high-profile organizations such as government institutions, intelligence services, and military units, as well as telecommunications and power companies.
Open interactive actor investigation
ATT&CK techniques
T1204.002
Malicious FileT1566.002
Spearphishing LinkT1059.003
Windows Command ShellT1059.005
Visual BasicT1059.006
PythonT1053.005
Scheduled TaskT1036.005
Match Legitimate Name or LocationT1204.001
Malicious LinkT1189
Drive-by CompromiseT1566.001
Spearphishing AttachmentT1218.007
MsiexecT1027
Obfuscated Files or InformationT1025
Data from Removable MediaT1547.001
Registry Run Keys / Startup FolderT1071.001
Web ProtocolsT1074.001
Local Data StagingT1071.002
File Transfer ProtocolsT1568.001
Fast Flux DNS
Malicious FileT1566.002
Spearphishing LinkT1059.003
Windows Command ShellT1059.005
Visual BasicT1059.006
PythonT1053.005
Scheduled TaskT1036.005
Match Legitimate Name or LocationT1204.001
Malicious LinkT1189
Drive-by CompromiseT1566.001
Spearphishing AttachmentT1218.007
MsiexecT1027
Obfuscated Files or InformationT1025
Data from Removable MediaT1547.001
Registry Run Keys / Startup FolderT1071.001
Web ProtocolsT1074.001
Local Data StagingT1071.002
File Transfer ProtocolsT1568.001
Fast Flux DNS