Industroyer2

Description

(ESET) ESET researchers responded to a cyber-incident affecting an energy provider in Ukraine. We worked closely with CERT-UA in order to remediate and protect this critical infrastructure network.

The collaboration resulted in the discovery of a new variant of Industroyer malware, which we together with CERT-UA named Industroyer2 – see CERT-UA publication here. Industroyer is an infamous piece of malware that was used in 2016 by the Sandworm APT group to cut power in Ukraine.

Names

Name
Industroyer2

Type

ICS malware
Backdoor

Information

https://www.welivesecurity.com/2022/04/12/industroyer2-industroyer-reloaded/
https://cert.gov.ua/article/39518
https://therecord.media/a-deeper-look-at-the-malware-being-used-on-ukrainian-targets/

Mitre Attack

https://attack.mitre.org/software/S1072

Malpedia

https://malpedia.caad.fkie.fraunhofer.de/details/win.industroyer2

Other Information

Uuid

008fade3-cb57-4c9e-b74a-bdcadffca9f1

Last Card Change

2023-06-22

Threat Intelligence Garden

Explorer

Industroyer2

Industroyer2

Description

Names

Category

Type

Information

Mitre Attack

Malpedia

Other Information

Uuid

Last Card Change

Graph View

Table of Contents

Backlinks