C0005

C0005Operation Spalax

ATT&CK
14.1
References
2

Description

[Operation Spalax](https://attack.mitre.org/campaigns/C0005) was a campaign that primarily targeted Colombian government organizations and private companies, particularly those associated with the energy and metallurgical industries. The [Operation Spalax](https://attack.mitre.org/campaigns/C0005) threat actors distributed commodity malware and tools using generic phishing topics related to COVID-19, banking, and law enforcement action. Security researchers noted indicators of compromise and some infrastructure overlaps with other campaigns dating back to April 2018, including at least one separately attributed to [APT-C-36](https://attack.mitre.org/groups/G0099), however identified enough differences to report this as separate, unattributed activity.(Citation: ESET Operation Spalax Jan 2021)

References

  1. https://attack.mitre.org/campaigns/C0005
  2. https://www.welivesecurity.com/2021/01/12/operation-spalax-targeted-malware-attacks-colombia/

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Group
APT-C-36
Campaign
C0021
Campaign
Operation Wocao
Campaign
Operation Sharpshooter
Campaign
CostaRicto
Campaign
C0015
Sourced from MITRE ATT&CK Enterprise 14.1. Curated by Adam Lundqvist, SQUR.