OilRig Archives

A conceptual illustration showing a world map along with icons representing malware and other tools used by malicious actors

25,762

people reacted

OilRig Targets Middle Eastern Telecommunications Organization and Adds Novel C2 Channel with Steganography to Its Inventory

By Robert Falcone
July 22, 2020 at 6:00 AM

18 min. read

28,483

people reacted

Threat Brief: Iranian-Linked Cyber Operations

By Unit 42
January 9, 2020 at 6:00 PM

6 min. read

58,240

people reacted

Behind the Scenes with OilRig

By Bryan Lee and Robert Falcone
April 30, 2019 at 6:00 AM

24 min. read

DNS Tunneling in the Wild: Overview of OilRig’s DNS Tunneling

By Robert Falcone
April 16, 2019 at 9:00 AM

37 min. read

19,327

people reacted

Analyzing OilRig’s Ops Tempo from Testing to Weaponization to Delivery

By Robert Falcone and Kyle Wilhoit
November 16, 2018 at 8:00 AM

15 min. read

34,500

people reacted

OilRig Uses Updated BONDUPDATER to Target Middle Eastern Government

By Kyle Wilhoit and Robert Falcone
September 12, 2018 at 4:00 PM

9 min. read

21,256

people reacted

OilRig targets a Middle Eastern Government and Adds Evasion Techniques to OopsIE

By Robert Falcone, Bryan Lee and Riley Porter
September 4, 2018 at 1:00 PM

9 min. read

OilRig Targets Technology Service Provider and Government Agency with QUADAGENT

By Bryan Lee and Robert Falcone
July 25, 2018 at 5:00 AM

14 min. read

33,149

people reacted

OopsIE! OilRig Uses ThreeDollars to Deliver New Trojan

By Bryan Lee and Robert Falcone
February 23, 2018 at 5:00 AM

11 min. read

33,485

people reacted

OilRig uses RGDoor IIS Backdoor on Targets in the Middle East

By Robert Falcone
January 25, 2018 at 5:00 AM

8 min. read

40,336

people reacted

Introducing the Adversary Playbook: First up, OilRig

By Ryan Olson
December 15, 2017 at 1:00 PM

6 min. read

26,879

people reacted

OilRig Performs Tests on the TwoFace Webshell

By Robert Falcone
December 11, 2017 at 1:00 PM

16 min. read

31,802

people reacted

OilRig Deploys “ALMA Communicator” – DNS Tunneling Trojan

By Robert Falcone
November 8, 2017 at 1:00 PM

7 min. read

32,001

people reacted

OilRig Group Steps Up Attacks with New Delivery Documents and New Injector Trojan

By Robert Falcone and Bryan Lee
October 9, 2017 at 10:00 AM

12 min. read

25,418

people reacted

Striking Oil: A Closer Look at Adversary Infrastructure

By Robert Falcone and Bryan Lee
September 26, 2017 at 1:00 PM

8 min. read

Posts tagged with: OilRig

OilRig Targets Middle Eastern Telecommunications Organization and Adds Novel C2 Channel with Steganography to Its Inventory

Threat Brief: Iranian-Linked Cyber Operations

Behind the Scenes with OilRig

DNS Tunneling in the Wild: Overview of OilRig’s DNS Tunneling

Analyzing OilRig’s Ops Tempo from Testing to Weaponization to Delivery

OilRig Uses Updated BONDUPDATER to Target Middle Eastern Government

OilRig targets a Middle Eastern Government and Adds Evasion Techniques to OopsIE

OilRig Targets Technology Service Provider and Government Agency with QUADAGENT

OopsIE! OilRig Uses ThreeDollars to Deliver New Trojan

OilRig uses RGDoor IIS Backdoor on Targets in the Middle East

Introducing the Adversary Playbook: First up, OilRig

OilRig Performs Tests on the TwoFace Webshell

OilRig Deploys “ALMA Communicator” – DNS Tunneling Trojan

OilRig Group Steps Up Attacks with New Delivery Documents and New Injector Trojan

Striking Oil: A Closer Look at Adversary Infrastructure

Popular Resources

Legal Notices

Account

Trending

Popular Resources

Legal Notices

Account