MuddyWater

MITRE G0069Also known as Seedworm, TEMP.Zagros, Static Kitten, Mango Sandstorm, TA450
Reports
13
First seen
Nov 6
Last seen
Jun 10
Motivation
espionage, initial-access, cyberespionage

Targeting

Sectors
other ×6
Victim regions
Israel ×2United States ×1

Top ATT&CK techniques

T1566 Phishing ×8T1190 Exploit Public-Facing Application ×7T1219 Remote Access Software ×4T1087 Account Discovery ×4T1059 Command and Scripting Interpreter ×4T1486 Data Encrypted for Impact ×4T1566.002 Phishing: Spearphishing Link ×4T1003 OS Credential Dumping ×3T1133 External Remote Services ×3T1078 Valid Accounts ×3T1598 Phishing for Information ×3T1561 Disk Wipe ×3

Indicators

filename ×34cve ×28ip_v4 ×16hash_sha256 ×6domain ×4registry_key ×3hash_md5 ×2url ×1hash_sha1 ×1

Indicator values are available on Pro and via the API.

Associated CVEs

Recent reports

This page shows data on a 7-day delay. Free accounts get the full delayed feed; real-time reports, indicators, and the API start at $29/mo.