HEXANE

Threat Actor Profile Updated a month ago
Download STIX
Preview STIX
Hexane is a threat actor originating from the Middle East and Africa (MEA) region, involved in malicious cyber activities with the intent of espionage. The group has been active since at least 2019, showing similarities to other activity groups like MAGNALLIUM and CHRYSENE. Hexane primarily targets critical infrastructure and telecommunications operations, reflecting a broader trend among similar groups. However, as of now, cybersecurity firm Dragos assesses that Hexane does not have the capability or access required to disrupt Industrial Control System (ICS) networks. The group's activities have largely focused on organizations in Saudi Arabia, the United Arab Emirates, and Israel. These operations put Hexane alongside other well-known Advanced Persistent Threat (APT) actors such as Oilrig, Molerats, and Bahamut. Hexane's methods involve the use of malicious documents that drop malware, establishing a foothold for subsequent malicious activities within the targeted systems. Despite its limitations in disrupting ICS networks, Hexane's consistent focus on critical infrastructure and telecommunications poses a significant threat. Its activities align with the strategic objectives of certain countries in the MEA region seeking to bolster their influence through digital espionage. Understanding and mitigating the risks posed by Hexane and similar threat actors is crucial for maintaining the security and integrity of key infrastructures and telecommunication networks.
Possible Aliases / Cluster overlaps
It's hard to track cluster overlaps and naming conventions between vendors, so here are some possible overlapping names / profiles you also may want to look at.
IDVotesProfile Description
Miscellaneous Associations
Other elements of context that could aid in the identification of relevance
Associated Malware
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
No associations to display
Associated Threat Actors
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
No associations to display
Associated Vulnerabilities
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
No associations to display
Source Document References
Information about the HEXANE Threat Actor was read from the documents corpus below. This display is limited to 20 results, create a free account to see more
SourceCreatedAtTitle
MITRE
a year ago
EXANE Threat Group | Dragos
MITRE
a year ago
Cyber Threat Group LYCEUM Takes Center Stage in Middle East Campaign
CERT-EU
3 months ago
Surge in ransomware, leaks and info stealers targeting Middle East and Africa – Intelligent CIO Middle East | #hacking | #cybersecurity | #infosec | #comptia | #pentest | #ransomware | National Cyber Security Consulting
DARKReading
2 months ago
Saudi Arabia, UAE Top List of APT-Targeted Nations in the Middle East