G0088

TEMP.VelesTEMP.Veles

Also known as: Xenotime · G0088 · ATK91 · TEMP.Veles

Known aliases
4

Profile

TEMP.Veles is a Russia-based threat group that has targeted critical infrastructure. The group has been observed utilizing TRITON, a malware framework designed to manipulate industrial safety systems.

Aliases· 4

XenotimeATK91TEMP.Veles
G0088

MITRE ATT&CK Group crosswalk

G0088

References

  1. https://dragos.com/resource/trisis-analyzing-safety-system-targeting-malware/
  2. https://www.fireeye.com/blog/threat-research/2017/12/attackers-deploy-new-ics-attack-framework-triton.html
  3. https://attack.mitre.org/groups/G0088/
  4. https://cyberthreat.thalesgroup.com/attackers/ATK91
  5. https://www.dragos.com/threat/xenotime/

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Actor
TEMPER PANDA
Actor
Winter Vivern
Actor
Velvet Tempest
Actor
TempTick
Actor
TA577
Actor
Void Blizzard
Sourced from MISP-Galaxy Threat Actor cluster. Curated by Adam Lundqvist, Founder at SQUR.