Graceful Spider

Russian Federation

Details

Adversary Overview GRACEFUL SPIDER is a financially-motivated eCrime group that uses GetandGo Loader to deliver the SDBBot backdoor. The group previously used the backdoors FlawedAmmyy and FlawedGrace for this purpose. In January 2023, CrowdStrike Intelligence identified TrueBot samples distributing FlawedGrace. GRACEFUL SPIDER has been in operation since at least 201...

Community Identifiers

QB51K7TrCS9Vn6E

Objective

  • UJCqpZW0jwo4O5r

Motivation

  • H6dyxgp0

Contact our team about
IOCs for this adversary

?

During a cybersecurity incident, indicators of compromise (IoC) are clues and evidence of a data breach.

Resources

2023 Global Threat Report

Stopping GRACEFUL SPIDER: Falcon Complete’s Fast Response to Recent SolarWinds Serv-U Exploit Campaign

Big Game Hunting TTPs Continue to Shift After DarkSide Pipeline Attack

Unlock the adversary universe