HaggaHagga

Also known as: Aggah · TH-157 · Hagga

Known aliases
3

Profile

Hagga is a threat actor catalogued by MISP-Galaxy (MISP-Galaxy v341). The group is also tracked as Aggah, TH-157. Original record: Hagga is believed to have been using Agent Tesla, 2021’s sixth most prevalent malware, to steal sensitive information from his victims since the latter part of 2021.

Aliases· 3

AggahTH-157Hagga

References

  1. https://www.team-cymru.com/post/an-analysis-of-infrastructure-linked-to-the-hagga-threat-actor
  2. https://otx.alienvault.com/pulse/62cfe4ef3415be5f83be81d1
  3. https://team-cymru.com/blog/2022/07/12/an-analysis-of-infrastructure-linked-to-the-hagga-threat-actor/
  4. https://unit42.paloaltonetworks.com/aggah-campaign-bit-ly-blogspot-and-pastebin-used-for-c2-in-large-scale-campaign/

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Actor
TA577
Actor
Hezb
Actor
TA579
Actor
HAFNIUM
Actor
TAG-140
Actor
Hive0137
Sourced from MISP-Galaxy Threat Actor cluster. Curated by Adam Lundqvist, Founder at SQUR.