| SYMBOL | COMMON_NAME | aka. SYNONYMS |
On April 7, 2017, Pytor Levashov — who predominantly used the alias Severa or Peter Severa and whom Falcon Intelligence tracks as ZOMBIE SPIDER — was arrested in an international law enforcement operation led by the FBI. ZOMBIE SPIDER’s specialty was large-scale spam distribution, a fundamental component of cybercrime operations. Levashov was the primary threat actor behind a botnet known as Kelihos and its predecessors, Waledac and Storm. In addition to Levashov’s arrest, there was a technical operation conducted by Falcon Intelligence to seize control of the Kelihos botnet.
There are currently no families associated with this actor.
| 2019-03-06
⋅
CrowdStrike
⋅
PINCHY SPIDER Affiliates Adopt “Big Game Hunting” Tactics to Distribute GandCrab Ransomware Gandcrab Phorpiex PINCHY SPIDER ZOMBIE SPIDER |
| 2018-12-05
⋅
CrowdStrike
⋅
Farewell to Kelihos and ZOMBIE SPIDER Kelihos ZOMBIE SPIDER |
| 2018-01-01
⋅
CrowdStrike
⋅
2018 Global Threat Report Mangzamel BAMBOO SPIDER HOUND SPIDER ZOMBIE SPIDER |
| 2017-04-13
⋅
CrowdStrike
⋅
Inside the Takedown of ZOMBIE SPIDER and the Kelihos Botnet Kelihos ZOMBIE SPIDER |
| 2017-04-10
⋅
US Department of Justice
⋅
Justice Department Announces Actions to Dismantle Kelihos Botnet ZOMBIE SPIDER |