Iran's MuddyWater phishes Israel with custom backdoor
Tags
country: Albania China India Iran Israel Saudi Arabia Portugal United States Of America
maec-delivery-vectors: Watering Hole
attack-pattern: Email Accounts - T1585.002 Email Accounts - T1586.002 Malware - T1587.001 Malware - T1588.001 Phishing - T1660 Phishing - T1566 Server - T1583.004 Server - T1584.004 Software - T1592.002
Show in Graph
Common Information
Type Value
UUID f318bdcd-bf8a-4534-9399-4e4c436c5b7d
Fingerprint a5c49d33a33f87b2
Analysis status DONE
Considered CTI value 1
Text language
Published July 17, 2024, midnight
Added to db Aug. 31, 2024, 1:10 a.m.
Last updated Nov. 17, 2024, 6:54 p.m.
Headline Iran's MuddyWater phishes Israeli orgs with custom BugSleep backdoor
Title Iran's MuddyWater phishes Israel with custom backdoor
Detected Hints/Tags/Attributes 48/3/2
Source URLs
Redirection Url
Details Source https://www.theregister.com/2024/07/17/irans_muddywater_phishes_israeli_orgs/
Details Redirection https://packetstormsecurity.com/news/view/36119/Iran-Phishes-Israeli-Orgs-With-Custom-BugSleep-Backdoor.html
URL Provider
Details Provider Source level domain
Details packetstormsecurity.com packetstormsecurity.com
Details theregister.com www.theregister.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 213 Cyberwar News ≈ Packet Storm https://rss.packetstormsecurity.com/news/tags/cyberwar/ 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details Domain 1 
egnyte.com
Details Threat Actor Identifier - APT 522 
APT41