TA579TA579

Also known as: TA579

Known aliases
1

Profile

TA579 is a threat actor catalogued by MISP-Galaxy (MISP-Galaxy v341). Original record: TA579, a threat actor that Proofpoint researchers have been tracking since August 2021. This actor frequently delivered BazaLoader and IcedID in past campaigns.

Aliases· 1

TA579

Compliance frameworks testing this (incoming)8

TypeTargetConfidenceTier
ComplianceControlowasp_api_top10-api09100%live
ComplianceControlpci_dss_v4-r2100%live
ComplianceControltiber_eu-testing100%live
ComplianceControlowasp_llm_top10-llm09100%live
ComplianceControlai_act-art9100%live
ComplianceControlcra-annexi-2100%live
ComplianceControlcra-art13100%live
ComplianceControliso27701-a.8.2.1100%live

References

  1. https://www.proofpoint.com/us/blog/threat-insight/bumblebee-is-still-transforming

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Actor
TA578
Actor
TA577
Actor
TA547
Actor
TA530
Actor
TA459
Actor
TA571
Sourced from MISP-Galaxy Threat Actor cluster. Curated by Adam Lundqvist, Founder at SQUR.