APT / THREAT GROUP

MiniJS

2
aliases
Last seen:Mar 17, 2026

Intelligence Profile

MiniJS is a very simple JavaScript-based first-stage backdoor.

The backdoor is probably distributed via spearphishing email.

Due to infrastructure overlap, the malware can be attributed to the actor Turla. Comparable JavaScript-based backdoor families of the actor are KopiLuwak and IcedCoffee.

Threat Analysis

MiniJS is a known-sophistication threat actor of undetermined national origin, engaged in cyber operations with a primary motivation of unknown activity patterns.

External References

Quick Facts

TypeAPT / Threat Group
Aliases2

Also Known As

MiniJSjs.minijs

External Intelligence

Malpedia: js.minijs

Research Links

Data sourced from Malpedia, Ransomware.live, RansomLook, and CTIWATCH OSINT collection. Actor attribution is based on available intelligence and may be incomplete.
MiniJS — APT / Threat Group | Threat Intelligence | CTIWATCH.COM