SYMBOLCOMMON_NAMEaka. SYNONYMS
win.cyclops (Back to overview)

Cyclops


According to HarfangLabs, Cyclops is a malware platform written in Go which dates back to December 2023, and that they believe has been deployed against targets in the Middle-East in 2024. Cyclops allows operators to execute arbitrary commands on the target’s file system, as well as pivot inside the infected network. Notably, Cyclops is controlled through a HTTP REST API which is exposed to operators within an SSH tunnel.

References
2024-08-14HarfangLabHarfangLab CTR
Cyclops: a likely replacement for BellaCiao
BellaCiao Cyclops

There is no Yara-Signature yet.