Show in Graph
Common Information
Type Value
Value 
CopyKittens - G0052
Category Actor
Type Mitre-Intrusion-Set
Misp Type Cluster
Description [CopyKittens](https://attack.mitre.org/groups/G0052) is an Iranian cyber espionage group that has been operating since at least 2013. It has targeted countries including Israel, Saudi Arabia, Turkey, the U.S., Jordan, and Germany. The group is responsible for the campaign known as Operation Wilted Tulip.(Citation: ClearSky CopyKittens March 2017)(Citation: ClearSky Wilted Tulip July 2017)(Citation: CopyKittens Nov 2015)
Details Published Attributes CTI Title
Details Website 2023-02-16 5 Threat Actors Sheets: OpenAI Generated !
Details Website 2022-06-02 21 Exposing POLONIUM activity and infrastructure targeting Israeli organizations - Microsoft Security Blog
Details Website 2022-06-02 16 Exposing POLONIUM activity and infrastructure targeting Israeli organizations | Microsoft Security Blog
Details Website 2022-05-21 0 Matryoshka Malware from CopyKittens Group
Details Website 2021-04-20 1764 Raw Threat Intelligence
Details Website 2018-04-05 2 Understanding Code Signing Abuse in Malware Campaigns
Details Website 2017-03-21 21 Hunting Campaign Indicators on Privacy Protected Attack Infrastructure - DomainTools | Start Here. Know Now.