Witchetty was first documented by ESET in April 2022, who concluded that it was one of three sub-groups of TA410, a broad cyber-espionage operation with some links to the Cicada group (aka APT10). Witchettyas activity was characterized by the use of two pieces of malware, a first-stage backdoor known as X4 and a second-stage payload known as LookBack. ESET reported that the group had targeted governments, diplomatic missions, charities, and industrial/manufacturing organizations.
Alternate Group Names
LookingFrog,
Witchetty | 0 user ratings | 2024-07-26 20:16:41 blscott - archive -- |
Comments | new comment |
| Nobody has commented yet. Will you be the first? | |
| Forum |
