
Lily Spider
Details
LILY SPIDER likely operates as a private access broker for other adversaries, most commonly Ransomware-as-a-Service (RaaS) operators. LILY SPIDER registers domains that mimic real companies and uses them as part of social-engineering campaigns against victims. LILY SPIDER poses as a potential customer to entice victims into opening malicious files sent from file-sharing services such ...
Community Identifiers
iptF6Tc1qLIZMoQ
Objective
- yEN9gtW3RC2ADfs
Motivation
- tLWA9cmG
Contact our team about
IOCs for this adversary
?