LilacSquidLilacSquid
Also known as: LilacSquid
Known aliases
1
Profile
LilacSquid is an APT actor targeting a variety of industries worldwide since at least 2021. They use tactics such as exploiting vulnerabilities and compromised RDP credentials to gain access to victim organizations. Their post-compromise activities involve deploying MeshAgent and a customized version of QuasarRAT known as PurpleInk to maintain control over infected systems. LilacSquid has been observed using tools like Secure Socket Funneling for data exfiltration.
Aliases· 1
LilacSquid
Related by meaning· 6
Nearest entities by semantic similarity across the cs-graph corpus.