Cold RiverCold River

Also known as: Cold River · Nahr Elbard · Nahr el bared

Known aliases
3

Profile

In short, “Cold River” is a sophisticated threat (actor) that utilizes DNS subdomain hijacking, certificate spoofing, and covert tunneled command and control traffic in combination with complex and convincing lure documents and custom implants.

Aliases· 3

Cold RiverNahr ElbardNahr el bared

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Software
COLDCAT
Actor
DarkHotel
Actor
DriftingCloud
Actor
Void Blizzard
Actor
Corsair Jackal
Actor
Winter Vivern
Sourced from MISP-Galaxy Threat Actor cluster. Curated by Adam Lundqvist, Founder at SQUR.