Smoky Spider

Russian Federation

Details

SMOKY SPIDER is the criminal actor behind the development of the criminal loader most commonly known as Smoke Bot (a.k.a. Smoke Loader and Dofoil). Smoke Bot has been available on underground forums since 2011, and has gone through various changes since. The loader is primarily used to download and execute modules sold by SMOKY SPIDER or third-party malware provided by the criminal operator. In ea...

Community Identifiers

rXDqMPJEOsGHmWI

Objective

  • mfUdh4TXNVbPMRt

Motivation

  • ewvKdXil

Contact our team about
IOCs for this adversary

?

During a cybersecurity incident, indicators of compromise (IoC) are clues and evidence of a data breach.

Unlock the adversary universe

Thank you for your request!

A member of our team will be in touch shortly.

CrowdStrike logo