SYMBOL | COMMON_NAME | aka. SYNONYMS |
On April 7, 2017, Pytor Levashov — who predominantly used the alias Severa or Peter Severa and whom Falcon Intelligence tracks as ZOMBIE SPIDER — was arrested in an international law enforcement operation led by the FBI. ZOMBIE SPIDER’s specialty was large-scale spam distribution, a fundamental component of cybercrime operations. Levashov was the primary threat actor behind a botnet known as Kelihos and its predecessors, Waledac and Storm. In addition to Levashov’s arrest, there was a technical operation conducted by Falcon Intelligence to seize control of the Kelihos botnet.
There are currently no families associated with this actor.
2019-03-06 ⋅ CrowdStrike ⋅ PINCHY SPIDER Affiliates Adopt “Big Game Hunting” Tactics to Distribute GandCrab Ransomware Gandcrab Phorpiex PINCHY SPIDER ZOMBIE SPIDER |
2018-12-05 ⋅ CrowdStrike ⋅ Farewell to Kelihos and ZOMBIE SPIDER Kelihos ZOMBIE SPIDER |
2018 ⋅ CrowdStrike ⋅ 2018 Global Threat Report Mangzamel BAMBOO SPIDER HOUND SPIDER ZOMBIE SPIDER |
2017-04-13 ⋅ CrowdStrike ⋅ Inside the Takedown of ZOMBIE SPIDER and the Kelihos Botnet Kelihos ZOMBIE SPIDER |
2017-04-10 ⋅ US Department of Justice ⋅ Justice Department Announces Actions to Dismantle Kelihos Botnet ZOMBIE SPIDER |