CosmicDuke is a type of malware that is designed to exploit and damage computers or devices. It is believed to be developed by the same APT group responsible for other attacks such as CozyDuke and MiniDuke. CosmicDuke was first discovered in 2014 and shares certain similarities with the old Miniduke implants.
The original Miniduke group is thought to have switched to the CosmicDuke implant around 2014, suggesting that the two groups were initially connected. However, it appears that they parted ways at some point. Despite this, the similarities between the two implants suggest that they may still share some common code or development techniques.
Like other APT groups, the developers of CosmicDuke use sophisticated techniques to evade detection and maintain persistence on compromised systems. This can make it difficult for victims to detect and remove the malware, making it a serious threat to organizations and individuals alike.