APT / THREAT GROUP
Maintools.js
2
aliases
Last seen:Mar 17, 2026
Intelligence Profile
Expects a parameter to run: needs to be started as 'maintools.js EzZETcSXyKAdF_e5I2i1'.
Threat Analysis
Maintools.js is a known-sophistication threat actor of undetermined national origin, engaged in cyber operations with a primary motivation of unknown activity patterns.
External References
Quick Facts
TypeAPT / Threat Group
Aliases2
Also Known As
Maintools.jsjs.turla_maintools
External Intelligence
Malpedia: js.turla_maintoolsResearch Links
Data sourced from Malpedia, Ransomware.live, RansomLook, and CTIWATCH OSINT collection. Actor attribution is based on available intelligence and may be incomplete.