Octopus (Malware Family)

Octopus

The author describes Octopus as an "open source, pre-operation C2 server based on python which can control an Octopus powershell agent through HTTP/S."

It is different from the malware win.octopus written in Delphi and attributed to DustSquad by Kaspersky Labs.

References

2022-05-09 ⋅ InfoSec Handlers Diary Blog ⋅ Xavier Mertens
Octopus Backdoor is Back with a New Embedded Obfuscated Bat File
Octopus

2021-02-24 ⋅ Malwarebytes ⋅ Hossein Jazi
LazyScripter: From Empire to double RAT
Octopus Koadic

2021-01-07 ⋅ Recorded Future ⋅ Insikt Group®
Aversary Infrastructure Report 2020: A Defender's View
Octopus pupy Cobalt Strike Empire Downloader Meterpreter PoshC2

2020-12-24 ⋅ InfoSec Handlers Diary Blog ⋅ Xavier Mertens
Malicious Word Document Delivering an Octopus Backdoor
Octopus

2019-08-30 ⋅ Github (mhaskar) ⋅ Askar
Github Repository of Octopus
Octopus

There is no Yara-Signature yet.

Octopus Propose Change

References

Octopus