IP: 3.137.182.110
Your ISP: Analyzing ...
Your location: Analyzing ...
Analyzing ...
Published at: 2024-02-10 09:36
Source: Mandiant - APT35: Iranian Cyber Espionage Group
AI Generated
Attribution: Iran (Government-Sponsored)
Target Sectors: U.S., Western Europe, and Middle Eastern military, diplomatic, and government personnel. Also, media, energy, defense, and telecommunications sectors.
Operations:
Associated Malware: ASPXSHELLSV, BROKEYOLK, PUPYRAT, TUNNA, MANGOPUNCH, DRUBOT, HOUSEBLEND.
Attack Vectors: Spearphishing with lures related to health care, job postings, resumes, or password policies.
APT35 wields a blend of custom and public malware, backdoors, and tools: