HellHoundsHellHounds

Also known as: HellHounds

Known aliases
1

Profile

Hellhounds is an APT group targeting organizations in Russia, using a modified version of Pupy RAT called Decoy Dog. They gain initial access through vulnerable web services and trusted relationships, with a focus on the public sector and IT companies. The group has been active since at least 2019, maintaining covert presence inside compromised organizations by modifying open-source projects to evade detection. Hellhounds have successfully targeted at least 48 victims, including a telecom operator where they disrupted services.

Aliases· 1

HellHounds

References

  1. https://www.ptsecurity.com/ww-en/analytics/pt-esc-threat-intelligence/hellhounds-operation-lahat-part-2/
  2. https://ics-cert.kaspersky.com/publications/reports/2024/04/02/apt-and-financial-attacks-on-industrial-organizations-in-h2-2023/

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Actor
APT17
Actor
Hellsing
Actor
HOUND SPIDER
Actor
DarkGaboon
Group
Magic Hound
Actor
APT29
Sourced from MISP-Galaxy Threat Actor cluster. Curated by Adam Lundqvist, Founder at SQUR.