a new, previously unknown backdoor that we named Okrum. The malicious actors behind the Okrum malware were focused on the same targets in Slovakia that were previously targeted by Ketrican 2015 backdoors.
|2021-02-18 ⋅ PTSecurity ⋅ |
Poet RAT Gravity RAT Ketrican Okrum OopsIE Remcos RogueRobinNET RokRAT SmokeLoader
|2020-11-03 ⋅ Kaspersky Labs ⋅ |
APT trends report Q3 2020
WellMail EVILNUM Janicab Poet RAT AsyncRAT Ave Maria Cobalt Strike Crimson RAT CROSSWALK Dtrack LODEINFO MoriAgent Okrum PlugX poisonplug Rover ShadowPad SoreFang Winnti
|2020-05-21 ⋅ Intezer ⋅ |
The Evolution of APT15’s Codebase 2020
Ketrican Ketrum Okrum
|2019-07-18 ⋅ ESET Research ⋅ |
Okrum: Ke3chang group targets diplomatic missions
There is no Yara-Signature yet.