Spectral Kitten

Iran

Details

SPECTRAL KITTEN is an Iranian state-nexus adversary active since at least 2019. Previously tracked as the ProfaneTalon activity cluster, the adversary’s activity is characterized by the deployment of its custom IPSecHelper implant and Apostle ransomware variant in disruptive operations. These intrusions are typically accompanied by aggressive “lock-and-leak” information operations, with the advers...

Community Identifiers

kC9DOybHjuAKLMG

Objective

  • Q3uKdGqroLXv

Motivation

  • ekp5mWb7hMgQNdo

Contact our team about
IOCs for this adversary

?

During a cybersecurity incident, indicators of compromise (IoC) are clues and evidence of a data breach.