ID | Votes | Profile Description |
---|---|---|
Pawn Storm | 2 | Pawn Storm, also known as APT28, Fancy Bear, Sofacy Group, Sednit, BlueDelta, and STRONTIUM, is a threat actor that has been active since at least 2007. This group is notorious for targeting governments, militaries, and security organizations worldwide. In recent years, the methods employed by Pawn |
APT28 | 2 | APT28, also known as Fancy Bear, is a threat actor linked to Russia and has been involved in numerous cyber espionage campaigns. The group is notorious for its sophisticated tactics, techniques, and procedures (TTPs). Recently, NATO and the EU formally condemned APT28's activities, acknowledging the |
Dcleaks | 1 | DCLeaks, a threat actor, is suspected to be a part of a sophisticated information operation orchestrated by the Russian government, specifically by IRON TWILIGHT and Unit 74455. It was allegedly created alongside the Guccifer 2.0 persona to divert attention from the real source of leaked material. T |
ID | Type | Votes | Profile Description |
---|---|---|---|
XTunnel | Unspecified | 1 | XTunnel is a type of malware used by threat groups to gain secure access to compromised environments through a back connection created by the malware to a command and control (C2) server. IRON TWILIGHT, a known threat group, installed XTunnel as a Coreshell child process on an already compromised sy |
CORESHELL | Unspecified | 1 | Coreshell is a variant of Sofacy malware used by threat actors to compromise systems and steal sensitive information. Malware, like Coreshell, can infect computer systems through suspicious downloads, emails, or websites. Once inside, it can disrupt operations, steal personal information, or hold da |
CHOPSTICK | Unspecified | 1 | None |
ID | Type | Votes | Profile Description |
---|---|---|---|
Fancy Bear | Unspecified | 2 | Fancy Bear is a sophisticated Russian-based threat actor, also known as Sofacy or APT 28, that has been active since the mid-2000s. Fancy Bear is responsible for targeted intrusion campaigns against the Aerospace, Defense, Energy, Government and Media sectors. At the DNC, both Cozy Bear and Fancy Be |
Sofacy | Unspecified | 1 | Sofacy is a threat actor group that has been observed using multiple languages to create variants of the Zebrocy Trojan and Cannon. In one campaign, they relied heavily on filenames to lure victims into launching weaponized documents. The group packed only Delphi variants in an attempt to increase e |
ID | Type | Votes | Profile Description |
---|---|---|---|
No associations to display |