ID | Votes | Profile Description |
---|---|---|
Milan | 2 | Milan is a malicious software, or malware, that was notably deployed by the cyber group OilRig in 2021. The group updated its DanBot backdoor and began deploying multiple backdoors including Shark, Milan, and Marlin. These backdoors were mentioned in the T3 2021 issue of the ESET Threat Report. Simi |
Shark | 2 | Shark is a type of malware, or malicious software, that was deployed by the cyber group OilRig. In 2021, OilRig updated its DanBot backdoor and began deploying the Shark, Milan, and Marlin backdoors, as highlighted in the T3 2021 issue of the ESET Threat Report. This harmful program can infiltrate s |
adobereport.exe | 1 | None |
ID | Type | Votes | Profile Description |
---|---|---|---|
Marlin | Unspecified | 2 | Marlin is a type of malware, or malicious software, designed to exploit and damage computer systems. It infiltrates systems through suspicious downloads, emails, or websites, often without the user's knowledge. Once inside, Marlin can steal personal information, disrupt operations, or even hold data |
Sc5k | Unspecified | 1 | SC5k is a malware developed by OilRig, first discovered in November 2021 during the group's Outer Space campaign. This malicious software acts as a vehicle to deploy a downloader called SampleCheck5000 (SC5k), which utilizes the Office Exchange Web Services (EWS) API to download additional tools for |
ID | Type | Votes | Profile Description |
---|---|---|---|
OilRig | Unspecified | 2 | OilRig is a well-known threat actor in the cybersecurity landscape, notorious for its sophisticated attacks on various targets, including Middle Eastern telecommunications organizations and Israel's critical infrastructure sector. This entity has been linked to several high-profile campaigns such as |
Lyceum | Unspecified | 1 | Lyceum, also known as DEV-0133 and potentially linked to the OilRig group (aka APT34, Helix Kitten, Cobalt Gypsym, Crambus, or Siamesekitten), is a threat actor believed to be a Farsi-speaking entity active since 2018. It is suspected to be a subordinate element within Iran's Ministry of Intelligenc |
ID | Type | Votes | Profile Description |
---|---|---|---|
No associations to display |
Source | CreatedAt | Title |
---|---|---|
ESET | 7 months ago | OilRig’s persistent attacks using cloud service-powered downloaders |
CERT-EU | 10 months ago | OilRig’s Outer Space and Juicy Mix: Same ol’ rig, new drill pipes |
MITRE | a year ago | Who are Latest Targets of Cyber Group Lyceum | Accenture |
MITRE | a year ago | Cyber Threat Group LYCEUM Takes Center Stage in Middle East Campaign |