Malvertising Campaign Delivers Oyster/Broomstick Backdoor via SEO Poisoning and Trojanized Tools - Arctic Wolf
Show in Graph Show in Archive Viewer
Common Information
Type Value
UUID 96cef6c8-1832-41a4-9940-bb11385c8601
Fingerprint 1945f9c18474afda
Analysis status DONE
Considered CTI value 2
Text language
Published July 3, 2025, 4 p.m.
Added to db July 3, 2025, 6:49 p.m.
Last updated July 11, 2025, 7:41 p.m.
Headline Malvertising Campaign Delivers Oyster/Broomstick Backdoor via SEO Poisoning and Trojanized Tools
Title Malvertising Campaign Delivers Oyster/Broomstick Backdoor via SEO Poisoning and Trojanized Tools - Arctic Wolf
Detected Hints/Tags/Attributes 74/3/10
Archive Viewer
Source URLs
Redirection Url
Details Source https://arcticwolf.com/resources/blog-uk/malvertising-campaign-delivers-oyster-broomstick-backdoor-via-seo-poisoning-and-trojanized-tools/
URL Provider
Details Provider Source level domain
Details arcticwolf.com arcticwolf.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 15 Arctic Wolf https://arcticwolf.com/feed/ 2025-06-06 22:06
Attributes
Details Type #Events CTI Value
Details CVE 38 
cve-2025-20281
Details CVE 39 
cve-2025-20282
Details CVE 126 
cve-2025-5777
Details Domain 7 
updaterputty.com
Details Domain 7 
zephyrhype.com
Details Domain 9 
putty.run
Details Domain 7 
putty.bet
Details Domain 8 
puttyy.org
Details File 7 
twain_96.dll
Details File 1041 
rundll32.exe