G0079

G0079DarkHydrus

Description

[DarkHydrus](https://attack.mitre.org/groups/G0079) is a threat group that has targeted government agencies and educational institutions in the Middle East since at least 2016. The group heavily leverages open-source tools and custom payloads for carrying out attacks. (Citation: Unit 42 DarkHydrus July 2018) (Citation: Unit 42 Playbook Dec 2017)

References

  1. https://attack.mitre.org/groups/G0079
  2. https://researchcenter.paloaltonetworks.com/2018/07/unit42-new-threat-actor-group-darkhydrus-targets-middle-east-government/
  3. https://pan-unit42.github.io/playbook_viewer/

Software attributed to this1

TypeTargetConfidenceTier
SoftwareRogueRobins0270100%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Group
Dark Caracal
Group
Gorgon Group
Group
OilRig
Group
Leafminer
Group
Molerats
Group
MuddyWater
Sourced from MITRE ATT&CK Enterprise 14.1. Curated by Adam Lundqvist, SQUR.